Resources

Cybersecurity Research & Insights

Explore our cybersecurity white papers, data sheets, webinars, videos and more.

Virtual Event Presentation

SecTalks 2021: Using TPRM as a Pen Testing Strategy

Tune in to hear Adam Gladsden, SecurityScorecard's Strategic Third Party Risk Advisor, give his SecTalks 2021 Lightening Talk on Using TPRM as a Pen Testing Strategy. Listen now.

Virtual Event Presentation

Building a Robust Security Awareness Program

Tune in to this on-demand presentation from ActualTech Media's virtual event where our CISO, Mike Wilkes, explained how to build a robust security awareness program for your organization.

Webinar

Get a Grip: How to Stay Ahead of Evolving Regulatory Impact on TPRM

SecurityScorecard teamed up with OneTrust to give you the latest and greatest insights within Capital Hill. Watch this on-demand webinar to learn about what task forces to watch and how this impacts Third-Party Risk Management. View now.

Ebook

The Perfect Scorecard: Getting an A in Cybersecurity from your Board of Directors

The book brings together 17 of the best and brightest in cybersecurity today to offer actionable advice, best practices, and counsel on effectively closing the communication gap to accelerate organizational success.

Report

2021 Forbes Global 2000 Financial Sector Cybersecurity Health Check

This report examines the cybersecurity postures of the Financial Services sector of the Forbes Global 2000, compared to non-finance corporations, to identify the biggest cyber threats facing some of the world’s largest companies.

Webinar

SecurityScorecard, RapidRatings, Crowe & ProcessUnity: How to Build a Best In-Class Third Party Risk Management Program

In this on-demand webinar, explore what best-in-class organizations are doing today to streamline Third-Party Risk Management – from vendor onboarding and enhanced due diligence to ongoing monitoring. The right approach and the right tools can ultimately drive more risk out of the business, even with limited resources.

Webinar

SecurityScorecard & LogicGate: How to build a world-class third-party risk management program

Watch our expert panel from SecurityScorecard and LogicGate as they dive into best practices to increase efficiency and effectively manage your vendor management processes.

Webinar

Leading indicators for the leading indicators: SecurityScorecard and HackerOne

During this workshop SecurityScorecard and HackerOne discuss the advantages of combining VDPs, bug bounty programs, and continuous external cyber monitoring, including the impact it can have on reducing risk, preventing breaches, and vetting third parties.

SecurityScorecard Report

The State of Cybersecurity in the Energy Pipeline Industry in North America

This report focuses on the cybersecurity of the entire North American energy pipeline industry, measuring the security of companies with domestic U.S., Canadian and cross-border pipelines.

Video

Spring Launch 2021: See Risk | Solve Problems | Report Results

SecurityScorecard empowers you to see and understand cybersecurity risk in your organization and across your ecosystem with 360° visibility and seamless workflow integration with your security stack.

Video

Introducing SecurityScorecard's Integrate360° Marketplace

The SecurityScorecard Marketplace brings customers a one-stop shop where they can unlock, discover, and deploy additional trusted partner solutions and pre-built integrations on top of the SecurityScorecard platform.

Data Sheet

Integrate360°, SecurityScorecard's Marketplace

SecurityScorecard is proud to partner with over 40 product integrations, security intelligence partners, professional service providers, and more to empower security professionals to find, manage, and mitigate cybersecurity risks. Check out a selection of quotes from select partners on why they have partnered with SecurityScorecard.

Ebook

Third-Party Risk Management Strategies

In this ebook, we will highlight three principles that are key to implementing a world-class TPRM program.

Data Sheet

360° Visibility

Learn how you can get a 360° view of your cybersecurity risk with SecurityScorecard Ratings and Atlas. Download the data sheet.

Webinar

Advancing 3rd Party Risk Management with SecurityScorecard

Watch this webinar to learn how we can help you scale and optimize TPRM with 198% ROI according to The Forrester Consulting Total Economic Impact™ of SecurityScorecard study.

Data Sheet

Getting Started with Third-Party Risk Management

SecurityScorecard provides powerful, automation solutions that allow security teams to manage growing third-party ecosystems without increasing budget and staffing.

Data Sheet

Board & C-Suite Reports

Deliver real-time, customizable executive-level insights about your third-party risk.

Webinar

The Forrester Consulting Total Economic Impact™ of SecurityScorecard: Scale Your Third-Party Risk Management

In this webcast, a guest speaker from Forrester shares their findings on how a composite organization that has implemented the SecurityScorecard Ratings and Atlas platforms was able to achieve a 198% ROI.

Analyst Report

The Forrester Consulting Total Economic Impact™ of SecurityScorecard Study

SecurityScorecard commissioned Forrester to conduct a Total Economic Impact™ (TEI) study and examine the potential return on investment (ROI) enterprises may realize by deploying SecurityScorecard’s Security Ratings Platform

Demo Video

How to Integrate SecurityScorecard and Slack

This video goes over how to set up SecurityScorecard's app for Slack and start automating key workflows based on Scorecard changes.

Webinar

Amplify Third-party Risk Management with SecurityScorecard & Onspring

Too many vendors to assess? Desperate for continuous monitoring? No time to strategize? Watch this webinar to hear how others are amplifying third-party risk management using Onspring and the SecurityScorecard data connector.

Webinar

Revisiting the Board’s Role in Cyber Risk: Trends in Oversight, Disclosure and Dashboards

In this webinar, hosted by SecurityScorecard, CyberThreat Alliance, NACD, IHS Markit, and Diligent, we revisit the board's role in cyber risk oversight to account for new priorities and threats brought on by the COVID-19 pandemic.

Data Sheet

A Focus on the Manufacturing Industry

Manufacturers must ensure their vendors' security profiles align with their own security posture. Download our data sheet to learn how security ratings strengthen your supplier risk management initiatives, and strengthen your ERP system security.

White Paper

Exploring Bank Cybersecurity Risk

Download FitchRating's white paper on bank cybersecurity risk which explores gaining better insights into growing risk with cybersecurity scores from SecurityScorecard.

White Paper

A Guide to Cybersecurity Maturity Model Certification (CMMC)

By 2025, every prime contractor and subcontractor will need to prove compliance to bid on DoD contracts. Check out SecurityScorecard's guide to CMMC.

Report

Breach Brief: Analysis of Healthcare Industry in Australia and New Zealand

Healthcare organisations are under constant attack from sophisticated and well-funded criminal groups. This Breach Brief analyzes the current state of healthcare organisations in Australia and New Zealand.

Video

[Security DNA] Common Causes of Data Breaches & 30/60/90 Plans for CISOs

Listen to Alex Yampolskiy, CEO and Neil Daswani as they discuss the common causes of data breaches, how a third-party risk management program can help address risk on a continuous basis, and more.

Webinar

Combating Cyber Risk in Your Supply Chain: Responding to the Federal Government’s Push to Create a Resilient Industrial Base

How can you stay ahead in an evolving risk landscape? Listen to SecurityScorecard and Exiger as they discuss the importance of continuously monitoring the cybersecurity posture of the third parties we use and trust.

Analyst Report

Analyst Insights Bundle

This report bundle contains 3 reports from top tier analyst firms. Download the bundle to gain new insight into what security ratings can do for your organization and why SecurityScorecard's offerings lead the pack.

Report

The State of Cyber-Risk Disclosures of Public Companies

The SEC has in recent years demanded greater transparency from public companies in how they identify, measure, and manage cyber-risk. Download the report to learn about The State of Cyber-Risk Disclosures of Public Companies.

Video

[Security DNA] Creativity, Originality, and Innovation in the Cybersecurity Industry

Listen to Alex Yampolskiy, CEO and Co-Founder of SecurityScorecard, and Allen Gannett, author of The Creative Curve and tech entrepreneur, as they discuss how creativity and originality can have a huge impact on the cybersecurity ecosystem.

Analyst Report

The Forrester New Wave™: Cybersecurity Risk Rating Platforms, Q1 2021

The Forrester New Wave™: Cybersecurity Risk Rating Platforms, Q1 2021 report has recognized SecurityScorecard as a leader in cybersecurity risk ratings. Download your report today to see the new Cybersecurity Risk Ratings Landscape and how each provider measures up against new customer expectations.

Video

[Security DNA] Cybersecurity & Its Impact on a Company's Outlook

Listen to Alex Yampolskiy, CEO and Co-Founder of SecurityScorecard, and Deven Sharma, Chair Roc360 Advisory Board and Former President of Standard & Poors, as they discuss how cybersecurity and security ratings can have a substantial short and long term impact on a company's outlook.

Video

[Security DNA] Cybersecurity Lessons Learned in the Trenches and How to Stay Prepared in 2021

Listen to Alex Yampolskiy, CEO and Co-Founder of SecurityScorecard, and Mike Wilkes, CISO at SecurityScorecard, as they discuss the reasons why there are still many things to be excited about in the cybersecurity industry, the critical threats on the horizon, and more.

Data Sheet

SecurityScorecard Designated a 2020 Cyber Catalyst by Marsh

SecurityScorecard Security Ratings Platform has been recognized as a 2020 Cyber Catalyst solution by Marsh following an independent evaluation by leading insurers.

Analyst Report

Gartner Peer Insights ‘Voice of the Customer’: IT Vendor Risk Management Tools

SecurityScorecard has been named a 2021 Gartner Peer Insights Customers’ Choice for IT Vendor Risk Management (VRM) Tools.

White Paper

How to Manage Third-Party Digital Risk

Addressing data breaches outside your company is vital to managing your third-party digital risk. Download this white paper and learn about the implication of third-party data leaks, how to prevent and manage data leaks, and more.

Video

[Security DNA] Navigating Complexity with Security Chaos Engineering & Behavioral Economics

Listen to Alex Yampolskiy and Kelly Shortridge as they discuss the concept of security chaos engineering in today's environment as well as the trends and opportunities from the application of behavioral economics to information security.

Data Sheet

How Do SecurityScorecard Ratings Work?

SecurityScorecard provides transparency into our ratings methodology and delivers insights into how it aligns with industry standards. Understand the principles, methodology, and process behind how our cybersecurity ratings work.

Data Sheet

Applying Data-Driven Methodologies to Generate More Meaningful Cybersecurity Ratings

After applying machine learning-tuned factor weights to our sample data, we found that organizations with an F rating are 7.7x more likely to sustain a breach than those with an A.

Video

[Security DNA] Cybersecurity as a Business Enabler and Contributor to Shareholder Value

Listen to Alex Yampolskiy, CEO and Co-Founder of SecurityScorecard, and Moriah Hara, Founder of Vigilance Cyber Security, as they discuss how security is transforming itself from a cost center to a business enabler.

Analyst Report

The Impact of COVID-19 on Enterprise IT Security Teams

How has COVID-19 impacted enterprise IT security teams? Download the report to learn about the impact on impact of COVID-19 on IT security budgets and personnel, challenges of supporting a remote workforce, and new technology investments.

Video

[Security DNA] How to Establish a Culture of Cybersecurity Transparency

Listen to Alex Yampolskiy and Derek Vadala, CEO and Co-Founder of VisibleRisk and former CISO of Moody's Corporation, as they discuss cyber risk board reporting trends.

White Paper

Applying Machine Learning to Optimize the Correlation of SecurityScorecard Scores with Relative Likelihood of Breach

Learn about how SecurityScorecard applied machine learning to optimize the correlation of SecurityScorecard ratings with relative likelihood of a breach.

SecurityScorecard Report

State of The States' Cybersecurity

This report takes a look at the cybersecurity posture, including election-related infrastructure, of all 56 U.S. states and territories leading up to the presidential election.

Ebook

How Security & IT Teams Can Manage the Shift to the New Normal

Learn how security and IT teams can stay agile, enable business resilience, and manage the shift to the new normal. Download the ebook.

Data Sheet

The Golden Rules for Managing Third-Party Risk in the New Normal

Check out 3 tried and true “golden rules” for third-party risk management in the new normal, and some of the ways SecurityScorecard can help you follow them.

Video

SecurityScorecard’s Fall 2020 Release: Driving Cyber Resilience and Agility

SecurityScorecard’s integrated platform simplifies cybersecurity monitoring and assessment workflows, extends the value of existing investments, and helps grow resilient cybersecurity roots.

Webinar

Driving Cyber Resilience as Security & IT Teams Shift to the New Normal

2020 has brought unprecedented changes to our personal and professional lives, creating new pressures on security & IT teams. How can security and IT teams stay agile, enable business resilience, and manage the shift to the new normal?

Webinar

Third-Party Cyber Risks Are Increasing – Better Bring Your A-Game

Learn how to effectively manage and mitigate vendor risks to secure your organization. Watch the joint webinar with Venminder and SecurityScorecard.

Video

[Security DNA] Cybersecurity Board Reporting & What Public Companies are Talking About

Find out what boards are talking about in regards to cybersecurity, the critical KPIs that boards should be constantly measuring, what is the CISO's role is in the process, and what innovation we can expect from the broader cybersecurity ecosystem.

Case Study

Truphone Value Added Case Study Series

Learn how Truphone utilizes SecurityScorecard's security ratings platform for multiple use cases. Read the case study.

SecurityScorecard Report

Listening to Patient Data Security: Healthcare Industry & Telehealth Cybersecurity Risks

SecurityScorecard partnered with DarkOwl to bring insights about the cybersecurity risks of telehealth and an inside look at the way real cybercriminals are discussing ePHI. Read the report.

Webinar

Why the DoD is Prioritizing Continuous Monitoring

Learn about the Cybersecurity Maturity Model Certification (CMMC) and what it means for your organization. Watch the webinar.

White Paper

PCI DSS Compliance and Security Ratings: Protecting Cardholder Data and Assessing MDR for Merchants and Acquiring Banks

Learn how security ratings enable organizations to enhance and mature their information security and compliance programs by providing an independent, objective review of the companies’ external data breach risk mitigation strategies.

Video

[Security DNA] Innovation, Start-ups, and the New Normal for Cybersecurity Ventures

Listen to Alex Yampolskiy, CEO and Co-Founder of SecurityScorecard and Dov Yoran, Senior Director for Cisco's Security Business Group, as they address a variety of topics on the broader cybersecurity ecosystem.

Data Sheet

SecurityScorecard Provides Undisputed Measurable Value

Customers turn to SecurityScorecard for visibility into their risk landscape, enabling them to collaborate more effectively, both internally and externally. This allows customers to optimize their security investments in people, process, and technology.

Video

Make Cybersecurity a Team Sport with SecurityScorecard

SecurityScorecard’s enhanced product suite for effective collaboration empowers Security and Risk Teams to collaborate more effectively. Being collaborative allows stakeholders to work faster, smarter, and win together with internal teams and their third parties.

Webinar

Building a Successful Third Party Risk Management Program for a Modern World with CSA

Learn how to build a successful third-party risk management program in today's climate.

Video

[Security DNA] Rethinking Digital Risk in a New Remote-only World

Listen to Alex Yampolskiy, CEO and Co-Founder of SecurityScorecard and Grant Geyer, Chief Product Officer of Claroty, as they discuss how the nature of risk has changed.

Webinar

Collaborating Effectively on Cyber Risk Management by Making it a Team Sport

Learn how Forrester, Modulr, and Plex Systems have have built modern cyber risk management practices. Watch the webinar.

Video

SecurityScorecard featured in “Behind the Scenes with Laurence Fishburne”

SecurityScorecard was recently featured on a public broadcasting segment of “Behind the Scenes with Laurence Fishburne” on the ubiquity of cyber attacks that affect organizations of all sizes and in every industry.

Webinar

How Short is the Path to Your Most Critical Assets?

Watch this webinar on how malicious actors gain access to your network and the ease at which they can exploit external facing vulnerabilities, gain access to the network, and move laterally until finding their desired targets.

Template Bundle

Cyber Risk Management & Vendor Assessment Template Bundle

You can’t completely eliminate all cybersecurity risk, but you can manage it. Download SecurityScorecard's free cyber risk management and assessment template bundle.

Video

[Security DNA] A CISO Conversation: Managing Security and Private Data in a Global Digital Environment

Listen to Alex Yampolskiy, CEO and Co-Founder of SecurityScorecard and Nuno Teodoro, CISO of Truphone, as they discuss best practices on prioritizing security activities for a global organization.

Case Study

Case Study: Truphone

Learn how SecurityScorecard helps Truphone improve their security posture, gain insight into security risks, and drives a high ROI in time and resource management.

Ebook

Five Steps to a Modern Cyber Risk Management Team

This ebook will give you what we’ve learned from the best security teams in the world and give you the five steps to build a modern risk management team.

Data Sheet

Collaborate More Effectively with your Third-Party Environment

To run an efficient cyber risk management program, security and IT teams need to collaborate even more effectively with their vendors, partners, suppliers, and other third parties. Download the data sheet to learn more.

Video

[Security DNA] Using Threat Intelligence to Secure Your Organization

Listen to Alex Yampolskiy, CEO and Co-Founder of SecurityScorecard and Anuj Goel, CEO and Co-Founder of Cyware, as they discuss the current threat intelligence landscape as well as the reasons why CISOs should invest in relevant tools and solutions.

Video

[Security DNA] Latest Trends in Endpoint Protection & Cybersecurity Asset Management

Listen to Alex Yampolskiy, CEO and Co-Founder of SecurityScorecard, discuss with Lenny Zeltser, CISO of Axonius, the latest trends in the endpoint protection marketplace, what advice he would give cybersecurity entrepreneurs right now, and the definition of cybersecurity asset management.

White Paper

A Deep Dive in Scoring Methodology

SecurityScorecard scores provide insights and a detailed analysis of the security posture of an organization. Take a deep dive into our scoring methodology.

Webinar

Prioritizing Risk and Business Continuity During Times of Uncertainty

Listen to our webinar on prioritizing risk and business continuity during times of uncertainty.

Video

[Security DNA] Driving Security Hygiene Using Traditional and Non-traditional metrics

Listen to Alex Yampolskiy, CEO and Co-Founder of SecurityScorecard, discuss with Ed Amoroso, CEO and Founder of TAG Cyber on the key performance indicators that CISOs should use to measure cybersecurity effectiveness.

Webinar

Managing Supply Chain Risk During Times of Turmoil with CSA

Watch our webinar on managing supply chain risk during times of turmoil.

Webinar

Managing Supply Chain Risk During Times of Turmoil

In the webinar you will explore the current situation from the perspective of the hacker, monitoring and acting on vendor and supply chain risk and how to prioritize your actions to ensure business continuity during these times of turmoil and increased remote work.

Video

[Security DNA] Cyber Insurance in the Era of Expanding Digital Risks

Listen to Alex Yampolskiy discuss with Anthony Dagostino, EVP Global Cyber for Lockton Companies on the cyber insurance underwriting market, how boards rate themselves on their cybersecurity posture and more.

Case Study

Virgin Pulse leverages SecurityScorecard to scale their VRM program

Kal Dhisna, VP, Information Security & SaaS Operations, at Virgin Pulse talks about how using SecurityScorecard has allowed him and his team to automate and scale many of the functions of Virgin Pulse's vendor risk management program.

Data Sheet

SecurityScorecard & RSA Archer® GRC Platform Integration

SecurityScorecard’s integrated solution with the RSA Archer® GRC platform enables you to scale and enhance your vendor risk management (VRM) with SecurityScorecard Ratings.

Case Study

Case Study: RMS

By utilizing the SecurityScorecard platform and products, RMS has made incremental and lasting improvements to their security program, and the security team saw significant time-savings for critical aspects of the security program.

SecurityScorecard Report

2020 Democratic Presidential Candidates Get Smart to Cybersecurity Report

With the 2020 U.S. election on the horizon, SecurityScorecard wanted to know: How secure are the presidential candidates’ campaigns? Download the report.

Webinar

Communicating Cybersecurity to the Board

Communication is critical in the battle against cybersecurity risks to today's business. Learn how to educate and influence the board to get budget buy-in.

SecurityScorecard Report

QSnatch Technical Report

This report details a technical analysis of the malware, details of the discovery, a timeline of QSnatch’s history, and data and indicators of compromise (IoC) about the infected systems.

ebook

Addressing Brazil Lei Geral de Proteção de Dados (LGPD)

Learn how you can achieve, maintain and enable compliance with LGPD and other leading regulations and industry standards in your area.

Case Study

Case Study: Modulr

By using SecurityScorecard, Modulr was also able to decrease operational costs, increase objectivity, reduce human error and more. Read the case study.

Media Case Study

Case Study: Horizon Media

Learn how Horizon Media used SecurityScorecard to make strategic changes to their IT infrastructure and increase cybersecurity hygiene.

Webinar

Transformation of Cybersecurity Risk with CSA

The cyber landscape is continuing to evolve, and we're seeing digital trends continue to change. Digital technologies are accelerating the ability to do business, and really digitizing everything.

SecurityScorecard Report

Data Security in Healthcare Needs Intensive Care

Despite stringent data security, compliance and reporting requirements, the healthcare industry continues to struggle with cybersecurity. Read our report.

Video

Data Lifecycle Protection and Privacy

With privacy regulations brewing across the globe and consumers becoming more knowledgeable than ever about their privacy rights – can we now assume our personal data is now more secure than ever? Watch the video.

Webinar

SecurityScorecard's Mission & The Importance of Cybersecurity Ratings

We take viewers through the journey of SecurityScorecard, what problems we are solving, and why it’s important.

Data Sheet

SecurityScorecard for PCI Compliance

Download our Data Sheet to learn how you can meet evolving PCI requirements by maturing your PCI DSS compliance.

Video

Sam Kassoumeh Discusses New Feature Release: Custom Scorecard

SecurityScorecard is continuously working to deliver enhancements. We recently released a new feature, Custom Scorecard, as a part of the SecurityScorecard Ratings product. Users can now divide and score segments of their company (or a partner’s organization), including business lines, subsidiaries and organizational departments.

SecurityScorecard Report

Assessing Exposure & Organizational Behavior to the BlueKeep Vulnerability

SecurityScorecard researchers have used this BlueKeep event as a way to study companies’, and organizations’ response to this vulnerability over time.​​ Learn more.

Webinar

A Dive Into SecurityScorecard's Scoring Model, Risk Factors, and Data Collections

Take a dive into SecurityScorecard's scoring model, risk factors, and data collections from the likes of our data science and threat intelligence experts.

Webinar

It's a Compliance World: New Standards for Global Privacy Requirements

Learn how the new standards for global privacy requirements and regulations have transformed over time. Watch the webinar.

Video

Trust & Transparency, Introducing SecurityScorecard's Trust Portal

CEO and Co-Founder, Alex Yampolskiy, speaks about the fundamental importance of trust and transparency in security ratings.

Webinar

Simplifying Security: Breaking Down the World of Cyber Hygiene

Learn about importance of cyber hygiene in this animated on-demand webinar series with SecurityScorecard and CyberHero Adventures.

White Paper

Continuous Oversight in the Cloud: How to Improve Cloud Security, Privacy and Compliance

This white paper advocates for continuous oversight of the wide variety of cloud services used by organizations—a set of distinct, but related, management and assurance practices that address critical emerging risk domains, including security, privacy and compliance.

White Paper

Explanation of SecurityScorecard's Ratings Data

This white paper provides detail on the active and passive collection methods and signal types that are in use by the SecurityScorecard solution.

SecurityScorecard Report

Analysis of Cyber Risk Exposure for U.S. and European Political Parties Report

How are the political establishments responding to the threat of attack? And, are they prepared to effectively respond to an escalation in cyber activities? FInd out our findings in our report.

Ebook

7 Key Elements to Building a Compliance Program

To remain solvent, companies need to mature their compliance programs to protect themselves from the financial, reputational, and operational risks associated with data breaches. This ebook covers seven key elements of building a compliance program.

No waiting, 100% Free

Get your personalized scorecard today

Get your free scorecard and learn how you stack up across 10 risk categories. Answer a few simple questions and we'll instantly send your score to your business email.

Get Your Free Score

Get In Touch

Thank you for contacting us!