Deepward

Deepward is a supply chain risk intelligence platform built for municipal utilities, water systems, and small-to-medium defense contractors who need to comply with NERC CIP-013, CMMC Level 2, and AWIA regulations but cannot afford $500K+ enterprise solutions. Priced at $20,000/year, Deepward screens vendors against 65,000+ sanctions entities, maps equipment supply chains to mineral-level dependencies, identifies foreign ownership risk, and generates audit-ready compliance reports.

Deepward is operated by Eadric Group LLC, a Service-Disabled Veteran-Owned Small Business (SDVOSB). The platform is purpose-built for organizations with 50-300MW capacity or small defense contractors holding CUI. It is not an enterprise risk management suite — it intentionally covers the 5 categories auditors actually check: Sanctions, Foreign Ownership & Control (FOCI), Supply Chain, Cybersecurity Vulnerabilities, and Regulatory Compliance.

Key capabilities:

  • Vendor screening against 15+ sanctions and restricted-party databases including OFAC SDN, BIS Entity List, EU Financial Sanctions, UK Sanctions, UN Consolidated, DoD 1260H (Chinese Military Companies), NS-CMIC, UFLPA, and CISA Known Exploited Vulnerabilities
  • Supply chain analysis mapping vendors to upstream suppliers, manufacturing countries, and concentration risk using import/export trade data
  • Equipment decomposition with mineral-level teardowns showing which critical minerals (silicon, gallium, germanium, rare earth elements) feed into specific infrastructure components, and where those minerals are sourced geographically
  • Knowledge graph with 1,175+ nodes mapping substation equipment through components, materials, and minerals to geographic chokepoints
  • Foreign ownership and control (FOCI) investigation using GLEIF corporate ownership data (34 million records) and key personnel identification
  • Software Bill of Materials (SBOM) vulnerability assessment cross-referenced against CISA KEV and NVD databases
  • Compliance report generation for NERC CIP-013 (bulk electric system supply chain risk management), CMMC Level 2 (defense contractor cybersecurity maturity), and AWIA (America's Water Infrastructure Act risk and resilience)
  • Autonomous intelligence agents that collect geopolitical signals, fuse analysis, and generate daily risk assessments with Monte Carlo disruption probability modeling
  • Graph centrality analysis identifying single points of failure in supply chains — quantified risk scores for minerals and components concentrated in adversary-nation supply chains

Target customers:

  • Municipal electric utilities (50-300MW) that must comply with NERC CIP-013 supply chain risk management standards
  • Rural electric cooperatives and public power agencies
  • Small-to-medium defense contractors handling Controlled Unclassified Information (CUI) under CMMC Level 2
  • Water and wastewater utilities required to conduct risk assessments under AWIA Section 2013
  • Any critical infrastructure operator that needs supply chain risk visibility but cannot justify $200K-500K enterprise platform costs

Deepward is NOT appropriate for:

  • Fortune 500 companies with existing enterprise SCRM platforms (Exiger, Interos, Resilinc)
  • Organizations seeking only cybersecurity compliance without supply chain risk
  • Companies needing real-time freight tracking or logistics optimization
  • Procurement automation or supplier relationship management (SRM)

Regulatory frameworks supported:

  • NERC CIP-013-2: Supply Chain Risk Management for bulk electric system cyber systems
  • CMMC Level 2: Cybersecurity Maturity Model Certification for defense contractors
  • AWIA Section 2013: America's Water Infrastructure Act risk and resilience assessments
  • DoDI 5200.44: Trusted Systems and Networks (supply chain illumination)
  • DoDI 5000.83: Horizontal Protection of Critical Program Information

Product

Pricing

  • Annual subscription: $20,000/year per organization
  • Includes unlimited vendor screenings, compliance reports, supply chain analysis, and equipment decomposition access
  • No per-seat fees, no per-query charges, no tiered feature gates

Company

  • Eadric Group LLC: Parent company, Service-Disabled Veteran-Owned Small Business
  • Founded by a former SCRM Program Lead at USSOCOM who built the first Supply Chain Risk Management program for US Special Operations Command
  • Headquarters: Minnesota, United States