SecurityScorecard
SecurityScorecardReviews from AWS customer
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
96 reviews
from
and
External reviews are not included in the AWS star rating for the product.
The Gold Standard for Security Ratings
What do you like best about the product?
Its interface is deceptively simple with incredible functionality. I've rolled this out in three organizations, and EVERY time, it's found THE critical gaps (e.g.- expired SSL certificates). Daily use: it is my first dashboard check in the morning. PowerPoint Integration : Easily share insights with my leadership via PowerPoint.
What do you dislike about the product?
The very first setup had to do small adjustments not to score non-critical assets. It would help to have an onboarding wizard for this.
What problems is the product solving and how is that benefiting you?
It has also done away with self-assessment “security theater.” We are now trusted by our clients when it comes to rating and sales cycles within IT security has been reduced by 30%.
Industry Benchmarking at Its Best
What do you like best about the product?
It is very rare a platform can benchmark our security posture against our peers. It was extremely easy to implement and we were up and running in less than days. Completely game changing features like monitors for compromised credentials and DNS health checking. Proactive: Support will frequently suggest optimizations
What do you dislike about the product?
Sometimes scores will vary because of things like CDN outages which may cause unnecessary alerts. Another option would be a “pause monitoring” feature for maintenance windows.
What problems is the product solving and how is that benefiting you?
Our boardroom discussions have changed, and executives now hold leaders accountable when scores dip. The platform also allowed us to discover a cloud storage bucket misconfiguration before it could be exploited.
Objective Metrics for Security Posture
What do you like best about the product?
Since SecurityScorecard does not utilize any such data, the vendor ratings are impartial. The customers think of it as a no-brainer with one neutral benchmark. Understanding customer service & user-friendliness of platform (even for non-technical stakeholders).
What do you dislike about the product?
Ratings sometimes are unfairly strong about subjects a business cannot control (e.g. shared hosting providers) — More filters in data can be helpful
What problems is the product solving and how is that benefiting you?
It allows advisors to be more objective when discussing risk with clients by presenting hard data points on top of the perception. The audit process is faster, and the reliability and confidence of stakeholders are higher than they were prior to them.
External Vulnerability Management External Attack Surface
What do you like best about the product?
tHIS TOO IS A SIMPLE man when it comes to ease of use and an insane one for the depth. I rely on it daily for our public security posture and the MS Power BI integration (thru API's) allows simple dashboarding. This is another huge one, the amount of features dark web monitoring, IP reputation checks etc really does save us hours and hours compared to doing it all manually. Unmatchable customer service, every concern is catered in hours.
What do you dislike about the product?
The initial integration work was a bit hard because of some legacy systems we have here, but their team really helped us. The only issue is that it doesn't detect all the subdomains (so you must type them manually).
What problems is the product solving and how is that benefiting you?
It identified seen assets, but right now blind spots or new asset categories such as old test envs. It has greatly reduced our attack surface, and helps us out a lot in negotiations when it comes to cyber insurance.
Essential for Third-Party Risk Management
What do you like best about the product?
Connecting our score to the fullest third-party security risk exposure view One of the things that I found most amazing was just how much you can see about a vendors security posture and not get bogged down in the weeds of all the technical analysis. Streamline the risk categorization (DNS Health, Patching cadence etc) for better focus and correct prioritization of remediation efforts. We got help and updates so you can be timely.
What do you dislike about the product?
The issue is… as positive as those scores are, we do still occasionally see some false positives related to the baked-in risk of vendors with whom we have no leverage. Once we had dialed in some compliance settings to better meet our own Risk Profiles, it was fairly straightforward to set up. As such — if reporting can be made any more flexible (which would cover the last gap), it will already be extremely similar to how we segment workflow.
What problems is the product solving and how is that benefiting you?
For vendor risk assessments, the utility use 60% time savings over manual due diligence. Yet, to keep their defenses up they can set up automatic alerts for when ratings drop and address vulnerabilities head-on so changes are made before things become dire. It is already quite critical for the compliance reporting and C-Level Risk visibility.
Security Scorecard as TPRM
What do you like best about the product?
the security scorecard was Budget Friendly (Moderate Budget Friendly) , Dashboards were good , good correlation with CVE
What do you dislike about the product?
Not having any Customer support, Not doing Constant Scans , Real time scanning was not available,
What problems is the product solving and how is that benefiting you?
Security Card was doing very well in managing the Vendor Risks , So it benefiting us to understand that how much access or how we can have a controlled environment that our vendor risk does not affect security of our organization, Moreover the Security Card was monitoring the External attack surface of Our Organization but withstanding it was not much accurate still at one point of time it helps us to understand the Attack surface and According to Attack surface we were able to monitor our Outer facing environment, while working on the Security Scorecard it helps us understanding that this Vulnerability can impact how much to the score of the Organization and also in maintaining best score by giving remediation practices to us
Security Scorecard TPRM
What do you like best about the product?
What I truly value about Security Scorecard is its comprehensive approach to vendor risk management, specifically how it excels in identifying risk factors, conducting thorough assessments, enabling continuous monitoring, and facilitating effective management of those risks.
What do you dislike about the product?
SecurityScorecard, in my opinion, is an exceptionally well-conceived solution for third-party risk management. The truth is, it causes me practically no bother at all, which speaks volumes about its great effectiveness and intuitive design. I believe they've successfully developed a tool that significantly simplifies such a critical aspect as cybersecurity with external vendors, fully meeting expectations and facilitating efficient risk management.
What problems is the product solving and how is that benefiting you?
The fundamental challenge that Security Scorecard effectively addresses is the lack of unified vendor risk management, coupled with the critical need for greater visibility into the technological security posture and proactive threat intelligence regarding third-party vendors. In today's interconnected digital landscape, organizations are increasingly reliant on a vast ecosystem of third-party providers, each representing a potential entry point for cyberattacks. Security Scorecard steps in to bridge this gap, transforming a chaotic and opaque process into a structured, insightful, and actionable one.
"Comprehensive Cybersecurity Insights with Room for Improvement"
What do you like best about the product?
SecurityScorecard provides a comprehensive view of your organization's cybersecurity posture and the security ratings of your third-party vendors, giving you the tools to manage and improve security risks effectively.
What do you dislike about the product?
While SecurityScorecard offers a lot of useful data, some users find the interface slightly overwhelming, especially if they are not very familiar with cybersecurity metrics.
What problems is the product solving and how is that benefiting you?
One issue is that the service might sometimes be too focused on broad metrics rather than providing highly detailed information. This forces me to look at other sources for deeper analysis, which can be time-consuming. However, it benefits me by keeping my focus on high-level security trends and identifying partners' general risk profiles quickly.
A solid tool for external security insights
What do you like best about the product?
SecurityScorecard offers us an external perspective of our security vulnerabilities, which helps us prioritize solutions that could otherwise go undiscovered. It’s like having a continual audit from a hacker’s viewpoint, and that’s helped us detect and solve flaws before they become huge problems.
What do you dislike about the product?
The possibilities for integration are somewhat limited. We use a number of different security technologies; it would be wonderful if SecurityScorecard could automatically link with them to streamline some of our processes. Right now, it seems a little compartmentalized.
What problems is the product solving and how is that benefiting you?
It’s providing us a complete perspective of our third-party risks, which has helped our vendor screening process significantly.
A must-have with some quirks
What do you like best about the product?
The ability to monitor our entire digital footprint and get actionable insights is unbeatable. The team’s willingness to let us test new features is a big plus too.
What do you dislike about the product?
The dashboard can lag, and I’ve had to refresh it more than once to see updated scores. It’s a small annoyance but noticeable.
What problems is the product solving and how is that benefiting you?
It’s tackling our need for continuous security oversight, which has reduced our risk exposure and improved our internal processes.
showing 1 - 10