Does 360TPRM support NIS2 and DORA?

Yes. NIS2, DORA, ISO 27001:2022, TISAX VDA ISA 6.0, GDPR, KRITIS and more are natively built-in — without manual framework mapping. Compliance status, measures and audit evidence are available at any time.

What is the Global Supplier Risk Map?

The Global Risk Map shows threat scores for all countries in real time. EU and US sanctions status, active alerts and supplier exposure per country are visible at a glance.

How does 360TPRM differ from traditional TPRM solutions?

Traditional TPRM solutions work with annual questionnaires and static risk files. 360TPRM delivers continuous Cyber Intelligence monitoring, native darkweb scanning, value chain mapping and automated compliance validation — without external third parties.

Where is the data stored?

360TPRM is fully hosted in Europe. Data is EU-sovereign, GDPR-compliant and tenant-separated — each customer gets a dedicated database instance.

Which companies is 360TPRM suitable for?

360TPRM targets companies with regulatory requirements (NIS2, DORA, TISAX) and complex supply chains: SMEs and enterprises, automotive manufacturers and suppliers, financial services providers, operators of critical infrastructure and MSSP partners.

When will 360TPRM be available?

Available from June 2026 in Europe. Pilot access for selected companies can be requested now via the demo form.

Is there an API or integrations?

Yes. 360TPRM offers a native API, STIX/TAXII integration for threat intelligence and Vanta export. The multi-tenant architecture supports White-Label and MSSP scenarios.

Intelligence-Driven TPRMLaunching June 2026 · Europe

Beyond TPRM — Intelligence that understands operational risks in real time.

Q: What is 360TPRM?

360TPRM is an Intelligence-driven Third-Party Risk Management platform by Darkscope. It connects Cyber Intelligence with supply chain transparency, NIS2/DORA compliance and a Global Risk Map including EU and US sanctions monitoring.

360TPRM connects Cyber Intelligence with supply chain transparency and compliance — for organizations that take NIS2 and DORA seriously.

Request Demo →Explore Platform

360tprm.darkscope.com

12.850+

Suppliers monitored

92%

Compliance coverage

4 Ebenen

Tier-n to Tier-1

Available in Europe

The Problem

Why traditional TPRM solutions are no longer sufficient

Static questionnaires create dangerous security gaps. Manual processes waste time, increase risk and slow down your business.

Traditional

360TPRM

Assessment cycle

Periodic — once per year

Continuous reassessment in real time

Data basis

Pure self-assessments

Objective findings & external evidence

Scalability

High manual analyst effort

AI-driven prioritization & automation

Transparency

Static risk file

Dynamic live status per supplier

Business context

No process or value chain reference

Linked to your business processes

Focus

Compliance-centric

Operational resilience & exposure

Platform

Everything in one integrated platform

From Cyber Intelligence to supply chain mapping, geopolitics and compliance — fully integrated.

NEW · Geopolitics

Worldwide threat landscape — incl. EU & US Sanctions

The Global Supplier Risk Map shows threat scores for every country in real time. Sanctions status (EU and US), active threats and supplier exposure on one map — for informed decisions in global supply chains.

—Threat score per country — color-coded from low to critical

—EU sanctions & US sanctions visible at a glance

—Supplier count and active alerts per country

—Direct drill-down to affected suppliers

—Geopolitical risk as part of overall scoring

Russia Profile Example

Threat Score: 8/10 — High · Sanctions: EU sanctions · US sanctions

360tprm.darkscope.com

Worldwide threat landscape — incl. EU & US Sanctions

Supplier Lifecycle

7-stage lifecycle — fully controlled

From initial capture to audit-proof archiving. Every step automated, documented and auditable.

Candidate

Capture from ERP, procurement or discovery. Deduplication & domain identification.

Screened

Early risk classification via CIQ360 scan, breach signals, country indicators.

Chosen

Onboarding starts: assessment invitation, DPA review, framework questions.

Active

Productive & monitored: Continuous Monitoring, Real-time Alerts, Reviews.

Reviewed

Structured reassessment based on current intelligence data.

At Risk

Increased attention: escalation, intensive monitoring, immediate action.

Archived

Audit-proof documentation & complete audit trail preservation.

MODULE

Portal

Blazor Server — central control for dashboards, supplier profiles and reporting.

MODULE

WebAPI + AuthV2

C# interface for secure access, CIQ360 integration and DB routing.

MODULE

Darkscope Worker

Background processing: correlation, risk assessment, automatic rating.

MODULE

Recon Engine + Tor

Darkweb indexing from Tor, Telegram and underground forums.

Platform in Action

See the platform live

All views are directly from the 360TPRM platform — no mockups.

Global Risk Map — 360TPRMNEW

Worldwide threat map with threat scores, EU and US sanctions — per country in real time.

Regulatory

NIS2. DORA. Compliant — and provable.

360TPRM supports you in meeting regulatory requirements with continuous evidence, automated processes and audit-ready reports at the push of a button.

All frameworks are natively built-in — no manual mapping, no additional setup.

NIS2Network and Information Security 2.0

92%

DORADigital Operational Resilience Act

89%

ISO 27001Information Security Management

94%

TISAXAutomotive Information Security

90%

GDPRGeneral Data Protection Regulation

93%

KRITISCritical Infrastructures & more

91%

🇪🇺 EU Hosted🔒 EU Data Sovereignty✓ Audit-ready⚖️ GDPR compliant

Supplier Controls — ISO 27001 & NIS2

Suppliers — filtered by criticality & country

Use Cases

360TPRM in practice

Supply Chain Visibility

Full visibility across your supply chain

Automatic capture of all direct and indirect suppliers. Continuous monitoring of cyber, financial and compliance risks. Risk-based prioritization for better decisions.

Cyber Intelligence

Detect cyber risks before they have impact

Business Process Mapping

Understand business processes and dependencies

Regulatory Compliance

Stay NIS2 & DORA compliant — with proof

Business Resilience

Strengthen operational resilience and secure your business

Competitive Comparison 2026

360TPRM vs. Competitors

No competitor offers this combination: natively integrated intelligence, EU hosting and real business context in one platform.

Feature / Capability	360TPRM	Competitor A	Competitor B	Competitor C
Native Cyber Intelligence Scanner	✓	—	—	—
Darkweb & Tor Crawler native	✓	—	—	—
Value Chain Mapping with criticality	✓	—	✓	—
Customer/recipient side mapping	✓	—	—	—
Intelligence-triggered Assessments (CVE → Questions)	✓	—	—	✓
10+ Compliance Frameworks native	✓	✓	✓	✓
API & Vanta Export native	✓	—	✓	✓
Dedicated DB per tenant (White-Label)	✓	—	—	—
EU Hosting & Data Sovereignty	✓	—	—	—
Continuous Monitoring 24/7	✓	✓	✓	✓
Multi-Tenant MSSP Architecture	✓	—	✓	—
USPs	8 unique	0 comparable	0 comparable	0 comparable

Native CIQ360 Scanner

No third party needed for external intelligence

Darkweb & Tor native

Breach correlation & credential monitoring included

Value Chain Mapping

Supplier → Process → Product → End customer fully mapped

EU Data Sovereignty

EU hosted, tenant-separated, White-Label capable

Beyond TPRM — Intelligence that understands operational risks in real time.

Why traditional TPRM solutions are no longer sufficient

Everything in one integrated platform

Worldwide threat landscape — incl. EU & US Sanctions

7-stage lifecycle — fully controlled

See the platform live

NIS2. DORA. Compliant — and provable.

360TPRM in practice

Full visibility across your supply chain

Detect cyber risks before they have impact

Understand business processes and dependencies

Stay NIS2 & DORA compliant — with proof

Strengthen operational resilience and secure your business

360TPRM vs. Competitors

Frequently Asked Questions

We make risks visible.
You stay in control.

Beyond TPRM — Intelligence that understands operational risks in real time.

Why traditional TPRM solutions are no longer sufficient

Everything in one integrated platform

Worldwide threat landscape — incl. EU & US Sanctions

7-stage lifecycle — fully controlled

See the platform live

NIS2. DORA. Compliant — and provable.

360TPRM in practice

Full visibility across your supply chain

Detect cyber risks before they have impact

Understand business processes and dependencies

Stay NIS2 & DORA compliant — with proof

Strengthen operational resilience and secure your business

360TPRM vs. Competitors

Frequently Asked Questions

We make risks visible.You stay in control.

We make risks visible.
You stay in control.