“Our previous vendor assessment process required a significant amount of time and also lacked the capability to identify specific types of risks that may be present across our supply chain.”

"If a vendor score drops below 600, we know there is a security issue with that vendor and we work with them to remediate that."

"Before UpGuard, our vendor risk management activities were less effective and comprehensive, even began after a vendor was onboarded. Now it's easy to monitor them via the dashboard, and it starts before they even sign the agreement."

“If you’re familiar with Active Directory Group Policy, then UpGuard makes a lot of sense. Ultimately you have this environment and you have this policy you’re applying to it. We’re also using Octopus Deploy and UpGuard uses many of the same methodologies. The two products complement each other.“

"It becomes easy to monitor hundreds of vendors on the UpGuard platform with instant email notifications if the vendor’s score drops below the threshold set based on risk or business."

"UpGuard provides an outsider's view of how an organization is doing in terms of vendor risk with the ever-increasing susceptibility of a cyberattack."

"Upguard has helped us de-risk our organisation, with solutions that are both reliable and accurate in producing fact-based information about our key suppliers, that we can proactively act on in order to help keep our platforms secure and stable."

"Before UpGuard, conducting proper research for each vendor would eat up a lot of time – Does it comply with our requirements? Where is their data located? Do they have privacy policies."

“We have set up notifications with UpGuard, such that if a vendor drops by 5 points, we reach out to the vendor in order to fix those security issues. These are usually issues such as SSL certificates expiring or DNS issues.”

“The biggest factor for us was time, We needed a tool that wouldn’t take more time to manage than the value it provided. UpGuard was by far the most efficient and user-friendly.”

“We’re stewards of public funds, When we choose a vendor, we need to justify that decision. Now, if anyone questions why we selected a particular provider, we can point to an independent, third-party assessment. That transparency is crucial.”

"Having an automated way to look at the attack surface is a great way to flag things like unmanned pages or EOL apps. It’s a low-hanging fruit to improve our security."

“UpGuard’s Cyber Risk scoring helps us understand which of our vendors are most likely to breach so we can take action now, before something happens."

“We had no way of determining the overall maturity of a vendor. So we had no way of estimating and comparing security maturity between vendors when going to tender.”

“We check the dashboard daily. Our score reflects how well we are doing. The higher the score, the more confident we are in our security posture.”