IT & Supply Chain Solution: master assets, dependencies and suppliers
For IT leads, CMDB owners, procurement and third-party risk managers who must prove control over their technology supply chain.
Your IT supply-chain blind spots
Shadow IT & incomplete inventory
You can't protect what you can't see. Forgotten servers, undeclared SaaS and orphan assets create blind spots neither the CISO nor audit will tolerate.
Unmapped dependencies
When a component fails, nobody knows which business services stop. Configuration relationships live in people's heads, not in a system.
Invisible supplier concentration
Three critical processes rely on the same host and you don't know it. DORA and NIS2 now require you to measure and document that concentration.
Contracts & renewals that slip
Expired SLAs, missing exit clauses, missed deadlines: ad-hoc contract management turns into legal and operational risk.
What ResiPlan delivers
Living CMDB
Unified inventory of IT assets, applications and services. CSV import, assisted discovery and a clear owner for every configuration item.
CI relationships & impact
Map dependencies between configuration items and instantly surface the business impact of an outage — the direct link to your BIAs and plans.
Supplier registry
Centralise third parties and subcontractors, their critical services and criticality. The basis for risk scoring and DORA ICT third-party compliance.
Contracts & CLM
Track contracts, SLAs, exit clauses and deadlines with automatic alerts. No more missed renewals or missing clauses.
Third-party risk scoring
Assess concentration, substitutability and posture for each supplier. Automatic detection of single points of failure.
DORA Register of Information
Generate the ESA-ready Register of Information (Art. 28) from your CMDB and contracts — ITS-compliant Excel/CSV/XBRL export.
Built for
If you are one of these roles, ResiPlan links your inventory to your risks, plans and regulatory obligations.
How it works
- 1
Import the inventory
CSV import, assisted discovery and clear owners — your CMDB comes alive.
- 2
Map dependencies
Link assets, services and suppliers; surface the business impact of an outage.
- 3
Score third-party risk
Concentration, substitutability and posture per supplier; detect single points of failure.
- 4
Export the register
Generate the ESA-ready DORA Register of Information from your data.
Frequently asked questions
Can we import our existing CMDB?
Yes — CSV import and assisted discovery let you start from your current inventory instead of a blank slate.
Is the DORA Register of Information export ESA-compliant?
Yes — the register (Art. 28/31) exports in the ESAs' expected format (Excel/CSV), ready for submission.
How do you detect single points of failure?
By cross-referencing CI dependencies with supplier concentration: when several critical services rely on the same third party, it surfaces as an alert.