The risk score is the percentage of inherent risk that has been mitigated. The risk score ranges from 0% to 100%. A higher risk means more inherent risk has been mitigated by the vendor.
The risk score is the result of our detailed review of 30 controls, including financial stability, cybersecurity, and OFAC checks. These 30 controls map to FFIEC, ISO27001, NIST, and PCI-DSS standards. For convenience, the risk scores less than 70% are categorized as High, risk scores between 70% and 90% are categorized as Medium, and risk scores higher than 90% are categorized as Low.
We analyze due diligence from a depth of knowledge in banking, cybersecurity, and the FFIEC, ISO27001, NIST, and PCI-DSS standards. Our analysis provides details regarding how each control is evaluated, the evaluation itself, and recommendations for increasing the risk score.
We look forward to helping you.