Cybersecurity Specialist at a tech vendor with 501-1,000 employees
Real User
Top 10
Dec 29, 2025
My main use case for SecurityScorecard is to keep an eye on our vulnerabilities and also monitor which companies follow us in the platform, and we keep track when our score drops so we can fix it. For tracking vulnerabilities or monitoring our score with SecurityScorecard, we take action based on our score, and a few people in our group have access there so they check it daily, monitor our IPs, and if there is something they need to discard. We have one specialist who fixes the vulnerabilities, and when he fixes things, he reports back to SecurityScorecard so we keep our score as high as possible, preferably at least A, and we have noticed some customers sharing reports from your platform where they needed us to have this A score. SecurityScorecard is quite simple and easy to use, and we just need to keep track when we receive those notifications from the tool.
My main use case for SecurityScorecard is that most of the time, the customer is looking for a solution which can provide all vulnerabilities and rate, security rate, and it also performs scanning of their domain, subdomain, and IP address. Customers can easily determine what weak passwords and policy configurations exist and can easily find out vulnerabilities. A specific example of how a customer has used SecurityScorecard to solve a problem is that I have given SecurityScorecard to multiple customers, and they were looking to understand what vulnerabilities they have and what ratings they have. I must add that SecurityScorecard continuously monitors the cybersecurity posture of the vendor, supplier, partner, SaaS platform, and others. Most of the time, the customer does not know what ports are open and whether they are exposed to vulnerabilities or weak SSL, TLS configuration, or malware signals, or misconfigured DNS. They also do not know whether their credentials are leaked. SecurityScorecard can help with this. For external attack surface monitoring, it is very useful.
Regional Director at a tech services company with 51-200 employees
MSP
Top 10
Dec 10, 2024
I primarily use Fortify Data for financial organizations. It combines attack surface capabilities with dark web information and breach disclosure information to assess vulnerabilities and risks. It also offers internal vulnerability scanning capabilities to provide a comprehensive risk assessment.
SecurityScorecard performs deep analysis over the exposed view of data. It creates an external IT assessment of the company in terms of domain and vendor reports. Essentially, it scans the company's landscape, trying to find vulnerabilities and exposed data that may cause digital risks.
We were asked by a customer to respond to issues raised on the platform regarding our security score. We are using the free offering at the moment. For something that was not part of our selection, I would like to have more features available. In that context, a paid subscription is way out of line for an organization of our size. As the approach is widely automated information gathering, there is a wide gap from free to paid which makes it hard for smaller organizations to get better security awareness. There is always the notion that a breach is expensive, however, that does not mean vendors can collect anything they like in terms of pricing. It has to be reasonable.
SecurityScorecard provides comprehensive cybersecurity insights with features such as notifications for score changes and configurable reporting, supporting team collaboration. It emphasizes multi-factor authentication and continuous monitoring for improved risk assessments.SecurityScorecard specializes in assessing third-party cybersecurity risks, enhancing security posture, and analyzing exposed data. It offers automated information gathering and vendor reports, aiding in vulnerability...
My main use case for SecurityScorecard is to keep an eye on our vulnerabilities and also monitor which companies follow us in the platform, and we keep track when our score drops so we can fix it. For tracking vulnerabilities or monitoring our score with SecurityScorecard, we take action based on our score, and a few people in our group have access there so they check it daily, monitor our IPs, and if there is something they need to discard. We have one specialist who fixes the vulnerabilities, and when he fixes things, he reports back to SecurityScorecard so we keep our score as high as possible, preferably at least A, and we have noticed some customers sharing reports from your platform where they needed us to have this A score. SecurityScorecard is quite simple and easy to use, and we just need to keep track when we receive those notifications from the tool.
My main use case for SecurityScorecard is that most of the time, the customer is looking for a solution which can provide all vulnerabilities and rate, security rate, and it also performs scanning of their domain, subdomain, and IP address. Customers can easily determine what weak passwords and policy configurations exist and can easily find out vulnerabilities. A specific example of how a customer has used SecurityScorecard to solve a problem is that I have given SecurityScorecard to multiple customers, and they were looking to understand what vulnerabilities they have and what ratings they have. I must add that SecurityScorecard continuously monitors the cybersecurity posture of the vendor, supplier, partner, SaaS platform, and others. Most of the time, the customer does not know what ports are open and whether they are exposed to vulnerabilities or weak SSL, TLS configuration, or malware signals, or misconfigured DNS. They also do not know whether their credentials are leaked. SecurityScorecard can help with this. For external attack surface monitoring, it is very useful.
I primarily use Fortify Data for financial organizations. It combines attack surface capabilities with dark web information and breach disclosure information to assess vulnerabilities and risks. It also offers internal vulnerability scanning capabilities to provide a comprehensive risk assessment.
SecurityScorecard is primarily used for supply chain risk management.
SecurityScorecard performs deep analysis over the exposed view of data. It creates an external IT assessment of the company in terms of domain and vendor reports. Essentially, it scans the company's landscape, trying to find vulnerabilities and exposed data that may cause digital risks.
The primary use case for SecurityScorecard is to assess and manage third-party cybersecurity risks within organizations.
This tool is a platform for monitoring and assessing the security posture of organizations and also helps to improve the posture by recommendations
We use SecurityScorecard for reporting.
We were asked by a customer to respond to issues raised on the platform regarding our security score. We are using the free offering at the moment. For something that was not part of our selection, I would like to have more features available. In that context, a paid subscription is way out of line for an organization of our size. As the approach is widely automated information gathering, there is a wide gap from free to paid which makes it hard for smaller organizations to get better security awareness. There is always the notion that a breach is expensive, however, that does not mean vendors can collect anything they like in terms of pricing. It has to be reasonable.