No more typing reviews! Try our Samantha, our new voice AI agent.
Bitsight Logo

Bitsight pros and cons

Vendor: BitSight
4.0 out of 5
Badge Leader
Leave a review

Pros & Cons summary

Bitsight offers extensive external attack surface monitoring to help organizations identify vulnerabilities, including external servers, botnet infections, and credential leaks. With responsive customer service, continuous monitoring of misconfigurations helps enhance security posture. However, data enrichment and technical errors can lead to inaccuracies and false positives, impacting the risk score and potentially delaying score improvements after resolving issues. This holistic approach to cybersecurity provides a detailed list of risk vectors.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

Bitsight offers comprehensive external attack surface monitoring, helping organizations detect vulnerabilities before adversaries can exploit them.
It provides crucial information about external servers, botnet infections, credential leaks, and open ports from an external viewpoint.
Bitsight's customer service is highly responsive, providing quick and effective support through email.
The tool delivers continuous monitoring of misconfigurations and high-risk exposures, enhancing overall security posture and customer trust.
Bitsight's holistic view of security posture includes a comprehensive list of risk vectors, beneficial for organizations seeking detailed insights into their cybersecurity environment.

CONS

The increase in findings for a particular month decreases the overall risk score, which poses challenges for teams.
Data enrichment is a major issue with Bitsight.
There are data discrepancies and occasional technical errors in Bitsight's methodology for identifying findings.
The methodology sometimes reports false positives, affecting the rating until rectified.
Vulnerability scores may not decline promptly after issues are resolved.
 

Bitsight Pros review quotes

SA
Suresh A.
Senior AIML Engineer at a tech vendor with 1,001-5,000 employees
Dec 10, 2025
Bitsight has positively impacted my organization by improving security and customer trust, giving us continuous monitoring so we now find misconfigurations within hours instead of days or weeks, which directly improves our overall security posture and reduces risk as we catch high-risk exposures early, especially unexpected cloud assets or testing endpoints that accidentally went public.
Read full review
TarunKumar11 - PeerSpot reviewer
TarunKumar11
Member Of Leadership Advisory Council at a tech company with 10,001+ employees
Jun 2, 2026
Bitsight has positively impacted the organization by helping with vendor benchmarking and providing outside-in cyber visibility across hundreds of vendors, which is the biggest plus.
Read full review
Aditya Vikram Raj - PeerSpot reviewer
Aditya Vikram Raj
Associate at a financial services firm with 10,001+ employees
Apr 4, 2026
If you are exactly looking for external attack surface monitoring, and you are exploring options, then Bitsight is a very good option that you can explore.
Read full review
Buyer's Guide
Bitsight
June 2026
Free Report: Bitsight Reviews and More
Learn what your peers think about Bitsight. Get advice and tips from experienced pros sharing their opinions. Updated: June 2026.
DOWNLOAD NOW
900,644 professionals have used our research since 2012.
Sudheer Kumar - PeerSpot reviewer
Sudheer Kumar
Cyber Security Architect at a tech services company with 1,001-5,000 employees
Jun 15, 2026
The security posture trends can be communicated visually, which is fantastic.
Read full review
Tarang Parmar - PeerSpot reviewer
Tarang Parmar
Founder at The Cyber Security Network
Dec 9, 2025
My advice to others looking into using Bitsight is that it provides a lot of information that was not available before, and it is especially good in recon as it can identify many things about an organization that have never been found earlier, making it a valuable tool.
Read full review
reviewer2774376 - PeerSpot reviewer
reviewer2774376
Senior Manager and Global Capability Lead - Offensive Security at a tech vendor with 10,001+ employees
Nov 3, 2025
Bitsight gives me a holistic view of my entire security posture, which is something any organization would want to have after getting a tool such as Bitsight.
Read full review
Marc Chapel - PeerSpot reviewer
Marc Chapel
Chief Security Officer at Cetelem
Sep 14, 2023
The product helps us identify the vulnerabilities of internet-facing applications.
Read full review
Alfredo Alvim - PeerSpot reviewer
Alfredo Alvim
Telecommunications Engineer at Portugal Telecom
Jan 23, 2024
The solution is user-friendly.
Read full review
JS
Julian Shen
VP at FUbon
Dec 26, 2023
I prefer BitSight due to its patch management capabilities. The score is a valuable feature. I have contacted the customer support through e-mail and their response rate is fast. I rate the solution a nine out of ten.
Read full review
AV
Ajai Victoria
SOC at Renault
Aug 16, 2022
Offers open ports from an external point of view.
Read full review
Show 2 more reviews (out of 12)
 

Bitsight Cons review quotes

SA
Suresh A.
Senior AIML Engineer at a tech vendor with 1,001-5,000 employees
Dec 10, 2025
There are areas for improvement; we do notice sometimes finding vulnerabilities which gives us visibility to find them quickly. However, there could be a mechanism they can build on top of that for validation as they identify the issues.
Read full review
TarunKumar11 - PeerSpot reviewer
TarunKumar11
Member Of Leadership Advisory Council at a tech company with 10,001+ employees
Jun 2, 2026
I would rate Bitsight closer to nine, or somewhere between eight and nine, because the reasons I do not rate it a ten relate to opportunities for improvement I mentioned, such as broader risk, cyber risk intelligence, and emphasis on supply chain risk intelligence.
Read full review
Aditya Vikram Raj - PeerSpot reviewer
Aditya Vikram Raj
Associate at a financial services firm with 10,001+ employees
Apr 4, 2026
Since if the number of findings increases for a particular month, your overall risk score decreases, which can become a challenge for a team working on this particular issue.
Read full review
Buyer's Guide
Bitsight
June 2026
Free Report: Bitsight Reviews and More
Learn what your peers think about Bitsight. Get advice and tips from experienced pros sharing their opinions. Updated: June 2026.
DOWNLOAD NOW
900,644 professionals have used our research since 2012.
Sudheer Kumar - PeerSpot reviewer
Sudheer Kumar
Cyber Security Architect at a tech services company with 1,001-5,000 employees
Jun 15, 2026
There are limitations with Bitsight; I am not saying everything is 100 percent accurate.
Read full review
Tarang Parmar - PeerSpot reviewer
Tarang Parmar
Founder at The Cyber Security Network
Dec 9, 2025
I chose 8 out of 10 because if we receive invites from clients every 45 days, our subscription ends, and we have to renew it.
Read full review
reviewer2774376 - PeerSpot reviewer
reviewer2774376
Senior Manager and Global Capability Lead - Offensive Security at a tech vendor with 10,001+ employees
Nov 3, 2025
We found that some of the findings are clear false positives, but they still report that, and based on that, the rating goes down until we rectify them.
Read full review
Marc Chapel - PeerSpot reviewer
Marc Chapel
Chief Security Officer at Cetelem
Sep 14, 2023
At the moment, when the vulnerability score decreases, it remains the same for quite a while, even though issues are resolved in 24 hours.
Read full review
Alfredo Alvim - PeerSpot reviewer
Alfredo Alvim
Telecommunications Engineer at Portugal Telecom
Jan 23, 2024
There may be room for improvement in the methodology for identifying findings, as occasional errors occur on the technical side.
Read full review
JS
Julian Shen
VP at FUbon
Dec 26, 2023
The solution’s benchmarking should be improved.
Read full review
AV
Ajai Victoria
SOC at Renault
Aug 16, 2022
Data enrichment is the major issue.
Read full review
Show 2 more reviews (out of 12)

Product Categories

Product Categories
IT Vendor Risk Management
Attack Surface Management (ASM)

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Bitsight Logo
CrowdStrike Falcon vs Bitsight
Darktrace vs Bitsight Logo
Darktrace vs Bitsight
TrendAI Vision One vs Bitsight Logo
TrendAI Vision One vs Bitsight
Qualys CyberSecurity Asset Management vs Bitsight Logo
Qualys CyberSecurity Asset Management vs Bitsight
HackerOne vs Bitsight Logo
HackerOne vs Bitsight
RSA Archer vs Bitsight Logo
RSA Archer vs Bitsight
Cymulate vs Bitsight Logo
Cymulate vs Bitsight
Axonius vs Bitsight Logo
Axonius vs Bitsight
OneTrust GRC vs Bitsight Logo
OneTrust GRC vs Bitsight
Amazon Inspector vs Bitsight Logo
Amazon Inspector vs Bitsight
Mandiant Advantage vs Bitsight Logo
Mandiant Advantage vs Bitsight
Cybersixgill vs Bitsight Logo
Cybersixgill vs Bitsight
AuditBoard vs Bitsight Logo
AuditBoard vs Bitsight
SecurityScorecard vs Bitsight Logo
SecurityScorecard vs Bitsight
SOCRadar Extended Threat Intelligence vs Bitsight Logo
SOCRadar Extended Threat Intelligence vs Bitsight
See all alternatives

Product Categories

Product Categories
IT Vendor Risk Management
Attack Surface Management (ASM)

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Bitsight Logo
CrowdStrike Falcon vs Bitsight
Darktrace vs Bitsight Logo
Darktrace vs Bitsight
TrendAI Vision One vs Bitsight Logo
TrendAI Vision One vs Bitsight
Qualys CyberSecurity Asset Management vs Bitsight Logo
Qualys CyberSecurity Asset Management vs Bitsight
HackerOne vs Bitsight Logo
HackerOne vs Bitsight
RSA Archer vs Bitsight Logo
RSA Archer vs Bitsight
Cymulate vs Bitsight Logo
Cymulate vs Bitsight
Axonius vs Bitsight Logo
Axonius vs Bitsight
OneTrust GRC vs Bitsight Logo
OneTrust GRC vs Bitsight
Amazon Inspector vs Bitsight Logo
Amazon Inspector vs Bitsight
Mandiant Advantage vs Bitsight Logo
Mandiant Advantage vs Bitsight
Cybersixgill vs Bitsight Logo
Cybersixgill vs Bitsight
AuditBoard vs Bitsight Logo
AuditBoard vs Bitsight
SecurityScorecard vs Bitsight Logo
SecurityScorecard vs Bitsight
SOCRadar Extended Threat Intelligence vs Bitsight Logo
SOCRadar Extended Threat Intelligence vs Bitsight
See all alternatives
Related questions
  • 166
What is your recommended automated audit software for internal and external audit?
  • 192
What is the difference between SOC 1, SOC 2, and SOC 3 compliance?
  • 52
Vulnerability Management and Risk Management Integration
  • 70
What vendor risk management software do you recommend?
  • 133
What is the best solution for comprehensive Risk Management in financial services?
  • 32
When evaluating IT Vendor Risk Management, what aspect do you think is the most important to look for?
  • 83
Which enterprise threat modeling tool do you recommend?
  • 126
What is Security Posture and what categories of Security Posture Management do exist?
  • 94
How many ISO norms do we have in the entire ISO27k security family standards?
  • 54
What should an enterprise risk management plan and strategy include in 2022?