“We had no way of determining the overall maturity of a vendor. So we had no way of estimating and comparing security maturity between vendors when going to tender.”

"Before UpGuard, our vendor risk management activities were less effective and comprehensive, even began after a vendor was onboarded. Now it's easy to monitor them via the dashboard, and it starts before they even sign the agreement."

“It’s important for us to monitor our vulnerabilities and security ratings because our insurers expect us to effectively protect and secure their data.”

“If you’re familiar with Active Directory Group Policy, then UpGuard makes a lot of sense. Ultimately you have this environment and you have this policy you’re applying to it. We’re also using Octopus Deploy and UpGuard uses many of the same methodologies. The two products complement each other.“

"This multinational provides a wide range of financial services. UpGuard helps prevent data breaches, by continuously scanning their own, as well as third-party vendors helps de-risk their exposure to suppliers and enables them to be proactive in managing third-party vendor risk."

“You see relevant information about a vendor in one place, including their location, security score.”

"We’re not just asking our vendors security questions. We’re also performing scans to confirm there are no security concerns. This helps us automate the security questionnaire process."

"We need to be audit-ready at all times, We cannot tell our clients, ‘Don’t audit us today.’ That’s not an option."

"We can monitor and view any vulnerabilities easily using the UpGuard dashboard, allowing us complete visibility into our security."

"Our complicated environment requires attention to detail when reviewing security risks. We have many cloud-first vendors so the UpGuard platform allows us to be granular and gives us an interesting layered insight on our supply chain that could have a critical impact on our operation. As a telecommunications company providing …

“UpGuard has been a valuable tool for detecting external security threats without requiring any platform integration. With its automated reports, we are able to quickly take action against potential attacks and categorize risks based on severity. Additionally, UpGuard assists us in assessing the security health of our onboarded vendors and …

“The UpGuard user experience was much nicer than other platforms and easier to use, while other platforms felt more outdated and not as friendly.”

“Third-party assessments could take up to 20-80 hours per vendor. With hundreds of vendors, it would take a team of two a full year to assess them all.”

“If they had a potential accounting impact, then we would insist on a SOC 1, Type 2 or SOC 2, Type 2. If they did not have an accounting impact, we had a phone call or sent a questionnaire.”

“I take a deep dive into the technical features to help the vendor when I send a remediation request.”