Supply chain risk at a glance
A centralized dashboard with risk profile, questionnaire status and technical validation for every supplier
Per-supplier risk profile
Real-time questionnaire tracking
Risk variation alerts
Galileo continuously inventories, evaluates and monitors every supplier in your chain — with profiled questionnaires, automated technical validation and documented NIS2 compliance with no manual intervention.
34%
year-over-year increase in cyber attacks targeting the supply chain globally
(Clusit Report 2025)
85%
of CISOs admit lacking full visibility into the cyber risk of their supply chain
(CISO Survey 2026)
Six automated phases to keep every supplier under control, from initial census to NIS2 reports
Galileo automatically imports and classifies every supplier by criticality, access level to your systems and NIS2 relevance.
▶ Supplier import: Acme Cloud S.r.l.
▶ Automatic analysis of cloud services and integrations
✓ Classification: critical supplier — direct infrastructure access
▶ NIS2 relevance: Relevant — essential services
A centralized dashboard with risk profile, questionnaire status and technical validation for every supplier
Per-supplier risk profile
Real-time questionnaire tracking
Risk variation alerts
A dedicated portal collects responses to profiled questionnaires. The platform runs active scans on every supplier, validating every declaration
The NIS2 directive requires compliance evidence both on the company perimeter and the supply chain. Galileo covers both, with no manual intervention
Assets and vulnerabilities
Continuous mapping of all exposed assets and externally detectable technical vulnerabilities.
Exposure history
Complete and verifiable chronology of perimeter and exposure evolution over time.
Compliance reports
Structured documentation on the perimeter security posture, automatically generated.
Per-supplier NIS2 classification
Each supplier is classified by NIS2 relevance, criticality and access level to your systems.
Technical response validation
Supplier declarations are verified with objective technical evidence and continuous monitoring.
Audit-ready supply chain reports
Complete documentation on every supplier, with scoring, evidence and NIS2 compliance status.
Supply Chain Analyzer automates the entire supplier management process: automatic classification by NIS2 relevance (GV.SC-04), risk scoring based on real technical data, profiled questionnaire delivery and cross-validated response verification.
When a supplier declares, for example, to use AES-256 encryption, Galileo verifies via active technical scan that TLS 1.3 is actually in use, notifying any discrepancy.
The module covers the main supply chain requirements of the directive: GV.SC-04 (supply chain risk management), GV.SC-07 (supplier assessment and audit) and ID.AM-04 (resource and third-party dependency inventory). Evidence is generated and archived automatically.
No. Each supplier receives a unique link to the dedicated portal, accessible from a browser without installing any agent or software. They fill in the questionnaire and answers are automatically validated by the platform.
Yes. Galileo exposes documented REST APIs and can feed your existing SIEM/SOAR systems. Scoring data, evidence and compliance are accessible programmatically, with no additional middleware.
You can import suppliers via Excel in minutes. Automatic classification is completed within 24 hours and the first questionnaire wave can be sent within a week. No complex configuration required.
Platform
Contacts
Company