“We had basic questions regarding business processes and security controls, but wanted to go deeper to provide high-level reporting that provided clarity into the vendor.”

"Having a system like UpGuard helps us sleep at night because we always know if we’ve overlooked any vulnerabilities."

"We’re not just asking our vendors security questions. We’re also performing scans to confirm there are no security concerns. This helps us automate the security questionnaire process."

“Our previous vendor assessment process required a significant amount of time and also lacked the capability to identify specific types of risks that may be present across our supply chain.”

"If a vendor score drops below 600, we know there is a security issue with that vendor and we work with them to remediate that."

“We have set up notifications with UpGuard, such that if a vendor drops by 5 points, we reach out to the vendor in order to fix those security issues. These are usually issues such as SSL certificates expiring or DNS issues.”

“If they had a potential accounting impact, then we would insist on a SOC 1, Type 2 or SOC 2, Type 2. If they did not have an accounting impact, we had a phone call or sent a questionnaire.”

“I take a deep dive into the technical features to help the vendor when I send a remediation request.”

“I look at the newsfeed to see if any companies we do business with have had a cybersecurity incident.”

"UpGuard was able to give us insight immediately into our online profile and identify our cyber risk."

"Having an automated way to look at the attack surface is a great way to flag things like unmanned pages or EOL apps. It’s a low-hanging fruit to improve our security."

“Before using UpGuard, our cyber risk management processes were very immature and still developing. Even after we started using UpGuard, we weren’t leveraging the tools the best we could.”

"Before UpGuard, our vendor risk management activities were less effective and comprehensive, even began after a vendor was onboarded. Now it's easy to monitor them via the dashboard, and it starts before they even sign the agreement."

“We check the dashboard daily. Our score reflects how well we are doing. The higher the score, the more confident we are in our security posture.”

"This multinational provides a wide range of financial services. UpGuard helps prevent data breaches, by continuously scanning their own, as well as third-party vendors helps de-risk their exposure to suppliers and enables them to be proactive in managing third-party vendor risk."