Resources

Cybersecurity Research & Insights

Explore our cybersecurity white papers, data sheets, webinars, videos and more.

SecurityScorecard Report

Cybersecurity Impact Analysis of US Government Shutdown

SecurityScorecard developed this report to outline observable changes within the external security postures of US federal government entities during the period throughout the US Government Shutdown of 2018 - 2019.

SecurityScorecard Report

2018 Education Cybersecurity Report

In 2018, SecurityScorecard analyzed 2,393 companies with a footprint of 100 IP addresses or more in the education industry. We found the following:

Video

SecurityScorecard Vendor Risk Management Video

In this short video, I’ll provide a quick demo of how to use the SecurityScorecard security ratings platform to gain an outside-in hacker view of vendor security, and quickly assess and manage risk in your third-party ecosystem

Video

Score Planner Feature Introduction

Your organization probably has security vulnerabilities it may need to fix, but you struggle to identify which vulnerabilities to prioritize. Additionally, you’ve been told your organization needs to maintain a certain security score within SecurityScorecard to meet your customer’s requirements. All this leads to the question, “How do I get there?”

Video

Event Log Feature Introduction

With SecurityScorecard’s new Issue Level Event Log, we are increasing transparency associated with score changes and enabling you to quickly pinpoint the specific issues that impacted your score.

Data Sheet

Next-Gen Cyber Security Scoring Data Sheet

Get a transparent view of cyber security risk

Data Sheet

Score Planner Data Sheet

Take control of your security rating and easily boost your score

White Paper

Next-Gen Scoring: A New Standard in Fair and Transparent Cybersecurity Ratings

​Security ratings can provide insights enabling better security when the companies creating the scores explain the algorithms so that businesses can understand how to use them meaningfully.

Webinar

Take Control of Your Rating and Easily Boost Your Score with Score Planner

Transparent understanding of what issues to prioritize in order to improve your score is now a key component of the SecurityScorecard Platform!

SecurityScorecard Report

Top 15 Chief Information Security Officers 2018

SecurityScorecard looked into the top 15 CISOs and the programs that have pushed their organizations forward in terms of cybersecurity; We ran an analysis looking at the security ratings of organizations over a six month period and identified which organizations improved those scores the most; whether overall or within a specific risk area.

White Paper

New Phorpiex/Trik Variant Poses Threat Through Remote Access

The newest Phorpiex/Trik variant has the ability to infect machines with ransomware by targeting desktops, laptops, and other endpoints running server-side remote access applications. With increasing numbers of companies offering remote-work options to their employees, many corporate endpoints may be running these applications.

White Paper

Insights into the Auditor’s Perspective

Internal audits lives at the intersection of cybersecurity and best practices while external audit protects organizations from regulatory penalties.

White Paper

The Legality of SecurityScorecard Data Collection

​SecurityScorecard delivers security ratings that empower enterprises to instantly and accurately monitor, assess and understand their own cybersecurity posture as well as the cyberhealth of all vendors and business partners in their ecosystems.

White Paper

Continuous Assurance Using Data Threat Modeling

ISACA & SecurityScorecard teamed up to write about continuous assurance using data threat modeling.

Case Study

Case Study: Cadence Bank

Find out how SecurityScorecard helps Cadence Bank perform thorough security vendor risk assessments, and improves accountability. Learn more.

White Paper

The Business Case for Investing in a Security Ratings Platform

Many cyber breaches occur as a result of third-party vendor relationships and these types of attacks are on the rise. The cost factors associated with a breach can include data loss, operational downtime, incident recovery, shareholder and customer lawsuits, regulatory fines and reputational damage.

White Paper

What Financial Institutions Need To Know About Cybersecurity and Audit Controls

Industry reports draw attention to consistent financial audit outcomes from year to year. Learn what you need to know about cybersecurity and audit controls within financial industries.

White Paper

Cyber Insurance & Security Ratings

This whitepaper provides detail on how cyber insurance providers can use security ratings to assess cyber risk as part of issuing cyber liability insurance policies.

Webinar

Forrester Webinar: Security Ratings Set the Standard

Listen to Heidi Shey, Forrester Senior Analyst - Security and Risk, as she discusses Forrester’s recently released study, “Security Ratings Set the Standard.” Watch the webinar.

Analyst Report

The Expanding Role of Security Ratings

In its Top Recommendations For Your Security Program, 2018 report, Forrester Research reports that “New cyber risk ratings and increased senior executive scrutiny require you to prove your security practices are solid. Often, this means tightening your practices with third parties or suffering their fate if they fail.”

Analyst Report

Security Ratings Set the Standard

In this Forrester report, commissioned by SecurityScorecard, Forrester found that, “Enterprises need robust platforms that can score and rate ecosystem risk to provide visibility into risks and help organizations improve their security posture more effectively.”

Case Study

Case Study: Gunderson Dettmer

Learn how SecurityScorecard helped Gunderson Dettmer enhance their cybersecurity posture and maintain client confidence. Read the case study.

SecurityScorecard Report

2018 Government Cybersecurity Report

Government agencies must leverage cybersecurity best practice tools and technologies and tailor risk mitigation strategies to address the unique requirements of election security and integrity.

White Paper

Understanding Cybersecurity Ratings

Security ratings grade your organization on how well it protects information. In a digital world, the importance of data and your company’s protection of that data parallels your income and protection of financial assets.

White Paper

NIST SP 800-171

NIST SP 800-171 required government contractors to provide “adequate security” to protect protect “controlled but unclassified information” (CUI) by December 31, 2017. While its main objective is to drive better cyber controls to protect CUI in non-federal systems and organizations, navigating the standard requires some understanding of its structure.

White Paper

How Security Ratings Improve Risk Awareness While Delivering a Solid ROI

Security ratings offer critical insight into vulnerabilities present both in your environment and the environment of your vendors, partners, suppliers, and other third-parties. Aside from providing clarity on the nature of risks in your risk ecosystem, security ratings provide tangible cost savings both in operating expenses and staff time.

Webinar

GDPR Penalties

Watch this on-demand webinar with Mike Resseler, Veeam Product Management Director, as he discusses how to accelerate your GDPR efforts, existing data management strategies, and more.

White Paper

HIPAA Compliance: Risk Analysis & Mitigation Strategies

The Health Insurance Portability and Accountability Act (HIPAA) prompted the HHS to issue the rules on the specific areas of HIPAA. These rules define uniform standards for transferring health information among healthcare providers, health plans, and clearinghouses while securing health information and ensuring patient privacy and confidentiality.

White Paper

Transforming Insights into Cyber Resilience via Technology Integration

Enterprises struggle with the increasingly difficult mandate to consistently improve, maintain, and document cybersecurity in order to protect brand reputation, customer trust, and the bottom line. Top of mind on the cyber security agenda is adopting a more agile approach to managing emerging risks across an organization’s third-party portfolio.

White Paper

The Cost of Complacent Cybersecurity

Ever wish you could just give in to despair and stop worrying about imminent security threats and let your network operate on cruise control? It’s a tempting thought given the escalating number of threats and the challenges involved in prioritizing them in terms of business risk cost and time to remediate.

SecurityScorecard Report

2018 Healthcare Cybersecurity Report

Looking at more than 1200 healthcare companies from July to the end of 2017, SecurityScorecard’s research team analyzed information such as issue severity, industry-defined risk level, corporate peer performance, and more.

Case Study

Case Study: Greenville Health System

Find out how SecurityScorecard helped Greenville Health System improve their cyberhealth and maintain compliance with standards and regulations.

Webinar

Forrester Webinar: Security Ratings - A Mission Critical Tool for Vendor Risk Managers and Beyond

While not yet a silver bullet, security ratings are emerging as a necessary tool in the vendor risk management armamentarium that can significantly reduce risk in your IT ecosystem, including both third-party and fourth-party risk.

Case Study

Case Study: Cyber Security in Healthcare

Find out how one healthcare insurance provider improved its affiliates cybersecurity health using SecurityScorecard. Learn more.

SecurityScorecard Report

2017 IoT Cybersecurity Research Report

SecurityScorecard identified 34,062 IPv4 addresses on the public internet which all display the symptoms expected from an embedded device infected with Mirai IoT malware.

Case Study

Case Study: Children’s Hospital of Minnesota

Find out how Children's Minnesota improved their security risk rating, as well as vendors' ratings with the help of SecurityScorecard. Learn more.

White Paper

Preparing for GDPR

The European Union’s (EU) General Data Protection Regulation (GDPR), effective May 25, 2018, reaches far beyond the Continent’s borders. GDPR imposes legislation on every organization that handles EU citizen data in order to deliver products or services. Inability to demonstrate compliance with GDPR will yield hefty penalties of 20+ million euros.

Ebook

The Guide to Building Your Vendor Risk Management (VRM) Program

Tackling the problem of vendor risk is not made any easier with technology solutions being added by the day. Current vendor risk management processes are not equipped to handle the growing demand of security risk assessments for new and existing third-parties. Learn how you can improve your vendor risk management program to handle the modern risk.

Video

The U.S. Cybersecurity Landscape

SecurityScorecard CEO Aleksandr Yampolskiy discusses how U.S. companies can protect against cyber attacks.

Video

Cyber-Hunting for Extremists

As extremist organizations use the internet to spread propaganda and recruit, government agencies develop new techniques to hunt them.

Video

Tech Zone with Paul Amadeus Lane- Ep. #23 Pt 1- HealthCare Industry Cybersecurity Report

2016 Healthcare Industry Cybersecurity Report - a comprehensive analysis exposing alarming cybersecurity vulnerabilities across 700 healthcare organizations including medical treatment facilities, health insurance agencies and healthcare manufacturing companies.

Case Study

Case Study: Farm Credit

Learn how SecurityScorecard helps Farm Credit easily monitor third party vendor risks and maintain compliance with regulatory guidelines. Learn more.

Case Study

Case Study: Liquidnet

Liquidnet uses SecurityScorecard to quickly and easily quantify the security performance of their vendors as well as providing continuous monitoring.

Tool

Instant SecurityScorecard

Instant SecurityScorecard provides a free limited summary view into the security posture of your organization that can be accessed every 30 days. It does not reflect or provide access in to the SecurityScorecard platform.

Case Study

Case Study: Healthwise

Discover how SecurityScorecard helped Healthwise gain confidence in the cybersecurity of their vendor ecosystem. Read the case study.

Video

Hacking Higher Education

While college students hit the books, hackers are stealing their private information. Universities are the third most-hacked industry behind healthcare and retail. Reuters explores the cyber threat across America’s academic landscape.

SecurityScorecard Report

2017 Financial Industry Cybersecurity Research Report

SecurityScorecard analyzed and evaluated the security posture of nearly 3,000 financial institutions to find existing vulnerabilities within banks, investment firms, and other financial organizations to determine the cybersecurity performance of the financial sector.

No waiting, 100% Free

Get your personalized scorecard today

Get your free scorecard and learn how you stack up across 10 risk categories. Answer a few simple questions and we'll instantly send your score to your business email.

Get Your Free Score

Get In Touch

Thank you for contacting us!