I primarily use Fortify Data for financial organizations. It combines attack surface capabilities with dark web information and breach disclosure information to assess vulnerabilities and risks. It also offers internal vulnerability scanning capabilities to provide a comprehensive risk assessment.
SecurityScorecard
SecurityScorecardReviews from AWS customer
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
96 reviews
from
and
External reviews are not included in the AWS star rating for the product.
A Powerful Tool for Cyber Risk Management
What do you like best about the product?
It is a game-changer in security risk . It's easy-to-understand rating system simplifies security data, making it simply to assess cyber risks. It is the best tool for the checking and improving score. it lists all the problem which causes the low and score and helps to increase the score.
What do you dislike about the product?
You could be blamed for security holes that aren't even in your machine.
and Keeping us best in the industry to increase the score.
and Keeping us best in the industry to increase the score.
What problems is the product solving and how is that benefiting you?
SecurityScorecard comes to solve the problems of vulnerability breaches identified in the main sites of a domain, in my case it helps me detect the vulnerabilities I have and gives me visibility to the address.
Excellent site analysis tool
What do you like best about the product?
You don't need to feed it anything, it starts looking for all the DNS of sites it relates to by itself, it is very easy to use and its implementation is natural, it is a tool for daily use.
What do you dislike about the product?
That sometimes you don't know why you are held responsible for some vulnerabilities that don't belong to your infrastructure, however, they are immediately removed when you let them know.
What problems is the product solving and how is that benefiting you?
SecurityScorecard comes to solve the problems of vulnerability breaches identified on the main sites of a domain. In my case, it helps me detect the vulnerabilities I have and gives me visibility to address them. Additionally, it helps me check if the actions I applied covered the vulnerability.
Best tool for security score for Website
What do you like best about the product?
It is the best tool for the checking and improving score. it lists all the problem which causes the low and score and helps to increase the score
What do you dislike about the product?
it should have the implemented steps to increase the score .
What problems is the product solving and how is that benefiting you?
Keeping us best in the industry to increase the score.
SecurityScorecard is a must for prevent breach and improve cyber hygiene across the supply chain
What do you like best about the product?
early breach detection and improved security posture
What do you dislike about the product?
Vulnerability list could have been better .
What problems is the product solving and how is that benefiting you?
early breach detection . Giving insight about the security posture
Good, but could use better reporting features
What do you like best about the product?
The security assessments are obvious and actionable. I especially enjoy the way the platform breaks down ratings by category, such as network security or application security, which makes it easier to target areas for development.
What do you dislike about the product?
The reporting feature seems a little simple. While the dashboards are useful for day-to-day monitoring, developing bespoke reports for executive presentations or audits needs more flexibility than what’s presently supplied.
What problems is the product solving and how is that benefiting you?
We utilize SecurityScorecard to assess our security performance against industry peers. This has been very motivating for our team and has helped us gain extra money for security efforts by displaying concrete results.
Identify vulnerabilities and increase risk ratings with need for dark web intelligence
What is our primary use case?
What is most valuable?
Fortify Data offers attack surface capabilities that identify vulnerabilities, exposed ports, and dark web information. It also provides breach disclosure information and has the capability for internal vulnerability scanning, which is helpful for a comprehensive risk assessment. It combines threat intel data with vulnerability information to increase risk ratings and provides insights into third-party supply chain risks.
What needs improvement?
The product can be improved by incorporating more data points and intelligence around dark web information and threat data. Adding more features to combine and consolidate internal vulnerability scanning was a beneficial enhancement. There is a need for more active rather than passive third-party risk management features to truly mitigate risks.
For how long have I used the solution?
I have worked with SecurityScorecard for a few years. I started getting more experience with them a couple of years ago and began a relationship with the company about a year ago.
What do I think about the scalability of the solution?
The product is suitable for medium to large businesses, typically with a revenue range from $200 million to a couple of billion dollars. It may not be ideal for Fortune 500 companies due to name recognition and scale.
How are customer service and support?
I would rate them about a six or seven. There are areas for improvement in response times and overall support. They are not a substantial company and are constantly improving, however, they need better organization to support their customer volume.
How would you rate customer service and support?
Neutral
How was the initial setup?
The setup was straightforward. It is easy to set up and can facilitate scanning within minutes.
What about the implementation team?
Deploying usually requires just a couple of people who understand the network and security components.
What was our ROI?
The biggest benefit is visibility, allowing organizations to understand their risks, vulnerabilities, and potential threats. It helps executives make effective decisions on mitigating or accepting risks.
What's my experience with pricing, setup cost, and licensing?
SecurityScorecard is priced in the middle range. There are more expensive and cheaper options available, however, Fortify Data and Censinet are also in the same middle range.
Which other solutions did I evaluate?
I have experience with Censinet and Fortify Data, which can be tailored more specifically to clients compared to SecurityScorecard.
What other advice do I have?
Overall, I would rate SecurityScorecard as a seven out of ten.
It is a good product yet somewhat generic in its capabilities. It has partnered well for third-party capabilities, but newer products are incorporating more AI functionalities.
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Other
Enhance vendor risk management with comprehensive analysis
What is our primary use case?
SecurityScorecard is primarily used for supply chain risk management.
How has it helped my organization?
The product is included in our portfolio as we are a cybersecurity distributor.
What is most valuable?
The features customers are most interested in are third and fourth-party vendor analysis and questionnaires.
For how long have I used the solution?
The product got onboarded a couple of months ago.
What do I think about the stability of the solution?
No one complained about the stability.
What do I think about the scalability of the solution?
The ones that tried it liked it, although some wanted a different solution.
How was the initial setup?
The initial setup takes just a couple of days and doesn't require any installation.
What other advice do I have?
I'd rate the solution eight out of ten.
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Other
Comprehensive Security Monitoring Made Easy
What do you like best about the product?
SecurityScorecard provides a user-friendly platform that offers valuable insights into our cybersecurity posture. The ability to monitor our own and third-party vendors' security ratings helps us proactively address potential risks
What do you dislike about the product?
While SecurityScorecard provides valuable insights, some of the alerts can be too frequent or lack specificity, leading to alert fatigue. Additionally, the pricing structure may not be cost-effective for smaller organizations with tight budgets
What problems is the product solving and how is that benefiting you?
SecurityScorecard helps us manage third-party risks by providing visibility into the security posture of our vendors. This proactive monitoring allows us to identify and address potential risks before they become critical issues, thereby strengthening our overall cybersecurity strategy. Additionally, the platform supports compliance efforts by offering insights and reports that align with various regulatory standards
The most valuable feature is the ability to identify if third parties or vendors have digital threats that may impact our company
What is our primary use case?
SecurityScorecard performs deep analysis over the exposed view of data. It creates an external IT assessment of the company in terms of domain and vendor reports. Essentially, it scans the company's landscape, trying to find vulnerabilities and exposed data that may cause digital risks.
What is most valuable?
With SecurityScorecard, the most valuable feature is the ability to identify if third parties or vendors have digital threats that may impact our company. It also scans all internal domains and IPs to find vulnerabilities in the digital landscape. The continuous monitoring capabilities have been beneficial by providing ongoing assessments of potential risks.
What needs improvement?
The pricing of the product needs improvement in Brazil.
For how long have I used the solution?
I have been using SecurityScorecard for the past year.
What do I think about the stability of the solution?
As for stability, it's 99.99% stable.
What do I think about the scalability of the solution?
The scalability of SecurityScorecard is really easy. If the user starts with twenty domains and needs to double, it's already in the platform one just needs to flag a button.
How are customer service and support?
They work pretty fast and have full knowledge of the solution. Personally, I've never had a problem with them. Sometimes there's a little delay because they need to investigate further, but overall, I'm pleased with their support.
How would you rate customer service and support?
Positive
How was the initial setup?
The initial setup of SecurityScorecard is very easy because it's a SaaS solution. Deployment time depends on the number of companies to be monitored; for fifteen to thirty companies, it might take two or three days, or up to a week.
The vendor helps users deploy the solution and set up functionalities, making it straightforward. Usually, three to four people are involved. The vendor assigns a Customer Success Manager to the end user, who acts as the focal point for support, new questions, and functionalities.
What about the implementation team?
What was our ROI?
The best ROI with SecurityScorecard is when the end user identifies that their vendors or third parties have digital threats that need to be addressed promptly. Preventing digital threats and data leakage from vendors and partners is the best ROI.
What's my experience with pricing, setup cost, and licensing?
The pricing of SecurityScorecard is fair. I would rate it a seven. It's a bit more on the expensive side. In Brazil, for example, making a payment to the vendor involves wire transfers and high taxes, making it more expensive. Selling SecurityScorecard or any American vendor's product in the United States is very different from selling in South America or Brazil.
What other advice do I have?
Overall I would rate the solution a nine out of ten.
Insightful data, potential for more reporting
What do you like best about the product?
The data presented is valuable and insightful, it helps to kick starty conversations with vendors regarding their cybersec controls. There are plenty of features to gather data, evidence and contact with Vendors to understand their infosec posture.
What do you dislike about the product?
There is room to improve further the autoamted reporting capabilities.
What problems is the product solving and how is that benefiting you?
It provides valuable information to strenght the TPRM program.
showing 11 - 20