“Our previous vendor assessment process required a significant amount of time and also lacked the capability to identify specific types of risks that may be present across our supply chain.”

"If a vendor score drops below 600, we know there is a security issue with that vendor and we work with them to remediate that."

“If they had a potential accounting impact, then we would insist on a SOC 1, Type 2 or SOC 2, Type 2. If they did not have an accounting impact, we had a phone call or sent a questionnaire.”

"Thanks to UpGuard’s custom questionnaire builder, the custom questionnaire we have created will significantly speed up our vendor assessment process. Many assessments will be reviewed and approved in only half an hour."

"UpGuard was able to give us insight immediately into our online profile and identify our cyber risk."

“Third-party assessments could take up to 20-80 hours per vendor. With hundreds of vendors, it would take a team of two a full year to assess them all.”

“We used UpGuard because it was an easily-delegated, easily-deployed product which did what we needed it to do."

“UpGuard’s Cyber Risk scoring helps us understand which of our vendors are most likely to breach so we can take action now, before something happens."

“We check the dashboard daily. Our score reflects how well we are doing. The higher the score, the more confident we are in our security posture.”

"We need to be audit-ready at all times, We cannot tell our clients, ‘Don’t audit us today.’ That’s not an option."

"It becomes easy to monitor hundreds of vendors on the UpGuard platform with instant email notifications if the vendor’s score drops below the threshold set based on risk or business."

“We have set up notifications with UpGuard, such that if a vendor drops by 5 points, we reach out to the vendor in order to fix those security issues. These are usually issues such as SSL certificates expiring or DNS issues.”

“UpGuard has been a valuable tool for detecting external security threats without requiring any platform integration. With its automated reports, we are able to quickly take action against potential attacks and categorize risks based on severity. Additionally, UpGuard assists us in assessing the security health of our onboarded vendors and …

"We did a group diff with UpGuard and quickly discovered that one of our web servers had a different configuration from the other six supporting the application. We restored that server’s configuration and things were back to normal. We couldn’t have done that without UpGuard.”

"UpGuard catches things that penetration testing misses and helps Xinja automate our vendor risk management processes."