TrustRadius: an HG Insights company

SecurityScorecard Reviews & Insights

Score9 out of 10

7 Reviews and Ratings

Community insights

TrustRadius Insights for SecurityScorecard are summaries of user sentiment data from TrustRadius reviews and, when necessary, third party data sources.

Pros

Good Interface: Users have praised the interface of Security Scorecard, with many stating that it is intuitive and easy to use. The design is considered to be well thought out and the navigation seamless.

Useful Dashboards: Many users have found the dashboards provided by Security Scorecard to be helpful and insightful. They appreciate being able to see necessary information at a glance, allowing for quick assessment of their organization's security posture.

Comprehensive Reporting Options: Users value the comprehensive coverage areas offered by Security Scorecard's reporting options. This allows them to tailor their security results message according to their audience, ensuring that they are providing relevant and targeted information.

SecurityScorecard Reviews

3 Reviews
Information Technology

Great alternative for Security Ratings

Rating: 9 out of 10
Incentivized

Use Cases and Deployment Scope

We used SecurityScorecard to have an overview and more insights about our public services such as web page and Internet facing applications.
I was very easy to set up, just give them your URLs & Public IP addresses and within a week we were getting results.
To keep track of issues, you can integrate your ticketing system to create new tickets.
You can also request further review if you think there's a false positive, which will affect your overall score.
About the overall score, you get to have a benchmark against similar companies, industry-size.
You're able to create portfolios to keep an eye on your vendors and get an overview about their scores.
One different feature, is the ability to create custom or use templates for Vendor questionnaires (such as PCI, ISO 27K, etc.) For this you'll have to but token, each token equals 1 questionnaire. The platform allows to keep track of requests (date sent, answered, etc.)

Pros

  • Security Ratings
  • Security Assessments
  • Reporting Center

Cons

  • Partner development

Likelihood to Recommend

It was really easy to find issues, solve false positives and keep track of overall security ratings.

Deep Review of SecurityScorecard

Rating: 10 out of 10
Incentivized

Use Cases and Deployment Scope

SecurityScorecard provides a full description of all cyber risks related to the custom domain and its 3rd parties/vendors as well. Also, SecurityScorecard provides a detailed electronic questionnaire to be sent to customer's vendors & 3rd parties in order to beget a full view of COMPLIANCE status (GDPR, PCI, and others).

Pros

  • Generates precise security ratings.
  • Allow customers to obtain a full view of its vendors' status of regulatory laws (GDPR, PCI...etc) - when handling an electronic questionnaire.

Cons

  • Pricing could be reviewed for specific industries which were more impacted by the pandemic situation.

Likelihood to Recommend

WELL SUITED * Cyber insurance companies. * Financial industry. * Telecom industry. LESS APPROPRIATE * Education.

SecurityScorecard Helped Start a Conversation with our Customers

Rating: 9 out of 10
Incentivized

Use Cases and Deployment Scope

I work for CyberSecurity as a consultant for the LATAM region and the SecurityScorecard helps me to have a better understanding of the surface area of the customer as well as to track the progress over time during the remediation process.

It also helps me as a kick-off tool before penetration testing or red team exercise to understand better the customer domains.

Pros

  • Provides good reports
  • Easy to manage and use
  • Tracks in near real time customer changes on the public network

Cons

  • Reports are only available in English.
  • More insights about the dark web would be useful.
  • Tracking of email/pwd leakeage across the organization would be a good-to-have feature.

Likelihood to Recommend

Good:
* Initial recognition of perimeter
* Discovery of shadow IT assets
* Get nice reports to set baselines and objectives for your customers

Bad
* Does not provide threat intel as another tool
* Not enough documentation for the API or to automate scenarios