Cybersecurity Specialist at a tech vendor with 501-1,000 employees
Real User
Top 10
Dec 29, 2025
I suggest that SecurityScorecard could be improved by giving a little more specifics on how the scanning works and how you are able to detect those IPs, including more details on the privacy side about how the scanner operates and how it is sometimes allowed to do those scans. Additionally, it might be good to understand how to quickly fix or report the quite a lot of false positives, perhaps through a self-checkout feature or something similar. The features of SecurityScorecard are quite adequate and do not need anything added.
SecurityScorecard can be improved. As it currently stands, it does a good job monitoring public-facing devices and the internet and DNS. If SecurityScorecard could also help their customers internally by developing their tool or feature so that customer devices that are not only public-facing can be monitored, it would be more beneficial.
Regional Director at a tech services company with 51-200 employees
MSP
Top 10
Dec 10, 2024
The product can be improved by incorporating more data points and intelligence around dark web information and threat data. Adding more features to combine and consolidate internal vulnerability scanning was a beneficial enhancement. There is a need for more active rather than passive third-party risk management features to truly mitigate risks.
They could improve the process with a questionnaire module for the product. At present, we have to answer multiple questions for the suppliers manually. They could automate functionality to enhance this particular area.
SecurityScorecard's technical team's response time is an area that my company expects to be made faster. As per the tool's SLAs, three days is way too much time for a user to wait for a response. SecurityScorecard is an online scanning tool. Apart from the web scanning feature, SecurityScorecard should be available for use on Android or iOS for app scanning purposes and then provide a status to the user. From the perspective of a customer, I would always want the price of the solution to be on the cheaper side.
Administrator at Neuberger Gebäudeautomation GmbH
Real User
Top 10
Dec 21, 2021
There could be more information in regards to solving problems like hints on what specifically to look for. There should be the option to split responsibility for certain areas. This would be mandatory if we want to invite external consultants to look at things together. As mentioned above, the pricing for a paid subscription is too high for "just" a monitoring platform. They don't fix your issues. Instead, you have to come up with a good explanation of why things are the way they are. Small teams might not have the patience to re-submit closure of issues due to the fact that the explanation for the issue is not accepted.
SecurityScorecard provides cybersecurity management with features like continuous monitoring and comprehensive vulnerability identification, crucial for managing third-party risks and improving security posture through external assessments and visual dashboards.SecurityScorecard enhances cybersecurity by offering tools for external security assessments, vulnerability detection, and informed decision-making. By incorporating visual dashboards and daily updates, it simplifies usability and risk...
I suggest that SecurityScorecard could be improved by giving a little more specifics on how the scanning works and how you are able to detect those IPs, including more details on the privacy side about how the scanner operates and how it is sometimes allowed to do those scans. Additionally, it might be good to understand how to quickly fix or report the quite a lot of false positives, perhaps through a self-checkout feature or something similar. The features of SecurityScorecard are quite adequate and do not need anything added.
SecurityScorecard can be improved. As it currently stands, it does a good job monitoring public-facing devices and the internet and DNS. If SecurityScorecard could also help their customers internally by developing their tool or feature so that customer devices that are not only public-facing can be monitored, it would be more beneficial.
The product can be improved by incorporating more data points and intelligence around dark web information and threat data. Adding more features to combine and consolidate internal vulnerability scanning was a beneficial enhancement. There is a need for more active rather than passive third-party risk management features to truly mitigate risks.
The pricing of the product needs improvement in Brazil.
They could improve the process with a questionnaire module for the product. At present, we have to answer multiple questions for the suppliers manually. They could automate functionality to enhance this particular area.
SecurityScorecard's technical team's response time is an area that my company expects to be made faster. As per the tool's SLAs, three days is way too much time for a user to wait for a response. SecurityScorecard is an online scanning tool. Apart from the web scanning feature, SecurityScorecard should be available for use on Android or iOS for app scanning purposes and then provide a status to the user. From the perspective of a customer, I would always want the price of the solution to be on the cheaper side.
The tool needs to have the ability to mitigate vulnerabilities with alternative solutions.
There could be more information in regards to solving problems like hints on what specifically to look for. There should be the option to split responsibility for certain areas. This would be mandatory if we want to invite external consultants to look at things together. As mentioned above, the pricing for a paid subscription is too high for "just" a monitoring platform. They don't fix your issues. Instead, you have to come up with a good explanation of why things are the way they are. Small teams might not have the patience to re-submit closure of issues due to the fact that the explanation for the issue is not accepted.