Skip to main content
Role

IT & Supply Chain Solution: master assets, dependencies and suppliers

For IT leads, CMDB owners, procurement and third-party risk managers who must prove control over their technology supply chain.

Your IT supply-chain blind spots

Shadow IT & incomplete inventory

You can't protect what you can't see. Forgotten servers, undeclared SaaS and orphan assets create blind spots neither the CISO nor audit will tolerate.

Unmapped dependencies

When a component fails, nobody knows which business services stop. Configuration relationships live in people's heads, not in a system.

Invisible supplier concentration

Three critical processes rely on the same host and you don't know it. DORA and NIS2 now require you to measure and document that concentration.

Contracts & renewals that slip

Expired SLAs, missing exit clauses, missed deadlines: ad-hoc contract management turns into legal and operational risk.

What ResiPlan delivers

Living CMDB

Unified inventory of IT assets, applications and services. CSV import, assisted discovery and a clear owner for every configuration item.

CI relationships & impact

Map dependencies between configuration items and instantly surface the business impact of an outage — the direct link to your BIAs and plans.

Supplier registry

Centralise third parties and subcontractors, their critical services and criticality. The basis for risk scoring and DORA ICT third-party compliance.

Contracts & CLM

Track contracts, SLAs, exit clauses and deadlines with automatic alerts. No more missed renewals or missing clauses.

Third-party risk scoring

Assess concentration, substitutability and posture for each supplier. Automatic detection of single points of failure.

DORA Register of Information

Generate the ESA-ready Register of Information (Art. 28) from your CMDB and contracts — ITS-compliant Excel/CSV/XBRL export.

Built for

If you are one of these roles, ResiPlan links your inventory to your risks, plans and regulatory obligations.

CMDB / ITSM Manager
IT Asset Manager
Procurement & Vendor Lead
Third-Party Risk Manager
DORA / ICT Third-Party Lead

How it works

  1. 1

    Import the inventory

    CSV import, assisted discovery and clear owners — your CMDB comes alive.

  2. 2

    Map dependencies

    Link assets, services and suppliers; surface the business impact of an outage.

  3. 3

    Score third-party risk

    Concentration, substitutability and posture per supplier; detect single points of failure.

  4. 4

    Export the register

    Generate the ESA-ready DORA Register of Information from your data.

FAQ

Frequently asked questions

Can we import our existing CMDB?

Yes — CSV import and assisted discovery let you start from your current inventory instead of a blank slate.

Is the DORA Register of Information export ESA-compliant?

Yes — the register (Art. 28/31) exports in the ESAs' expected format (Excel/CSV), ready for submission.

How do you detect single points of failure?

By cross-referencing CI dependencies with supplier concentration: when several critical services rely on the same third party, it surfaces as an alert.

Connect your IT inventory to your resilience

IT & Supply Chain Solution — ResiPlan | CMDB, suppliers, third-party risk