50 UpGuard Testimonials

"We can now get comprehensive vulnerability reports, tied directly to specific CIs. Because of this, we’ll also be able to drive end-to-end remediation processes within ServiceNow, and tie this directly back into other areas such as GRC.”

"UpGuard provides me an overview of the security across all the schools and helps me fix these security issues."

“UpGuard’s real-time security scoring system is beneficial. I get immediate feedback after releasing new functionality or responding to a highlighted risk. Seeing your security score go up is gratifying, almost like winning in a video game. Hence, it provides a psychological incentive to take care of the otherwise mundane task.”

"With a perfectly tuned container system, you can have as many as four-to-six times the number of server application instances as you can using Xen or KVM VMs on the same hardware."

“We used UpGuard because it was an easily-delegated, easily-deployed product which did what we needed it to do."

“It’s important for us to monitor our vulnerabilities and security ratings because our insurers expect us to effectively protect and secure their data.”

"Having an automated way to look at the attack surface is a great way to flag things like unmanned pages or EOL apps. It’s a low-hanging fruit to improve our security."

"Thanks to UpGuard, 640 hours of manual testing were reduced to 30 minutes, getting the datacenter operational on time."

“You see relevant information about a vendor in one place, including their location, security score.”

"We’re not just asking our vendors security questions. We’re also performing scans to confirm there are no security concerns. This helps us automate the security questionnaire process."

"We now have an automated, robust process for validating that planned changes are made correctly. That reduces regulatory and operational risk, lowers costs, and allows us to drive continuous improvement."

“We had no way of determining the overall maturity of a vendor. So we had no way of estimating and comparing security maturity between vendors when going to tender.”

"Open-Xchange uses a vulnerability scanner across the organization’s internal and external attack surfaces. While the scanner provides in-depth coverage, it doesn’t have asset discovery capabilities. It can only monitor what we know. It doesn’t have a perfect register of where every IT asset is, especially as we use dozens of cloud services for testing purposes.”

“Our previous vendor assessment process required a significant amount of time and also lacked the capability to identify specific types of risks that may be present across our supply chain.”

"If a vendor score drops below 600, we know there is a security issue with that vendor and we work with them to remediate that."