- October 25, 2021: Linked to Assessment Reporting resource.
- October 6, 2020: Version 1.4.1 now available.
The Bitsight Security Ratings Platform has an integration with the Vendor Risk Management application on the Now Platform® by ServiceNow®. This integration is certified by ServiceNow and can be found in the ServiceNow App Store.
Including the context and automation through the application allows you to adjust your processes and vendor risk management program, creating a tighter alignment with overall enterprise risk management priorities and ultimately establishing an integrated view of risk.
Features
Bitsight Data
This integration brings Bitsight data into the Vendor Risk Management application and leverages the powerful workflows of the ServiceNow Vendor Risk Management application. View Bitsight Security Ratings, risk vector grades, and 12 months of supporting data on all of the vendors in your portfolio, along with your vendor data in ServiceNow.
Easily access the Bitsight platform via links to review the underlying risk data and add additional context around your communication and remediation plans.
Portfolio Management
Subscribe to receive Bitsight Security Ratings data for new companies directly from the ServiceNow VRM module.
Tiering
Set up Bitsight Tiering to prioritize companies in your portfolio based on their criticality to your organization and their security risk.
- Synchronized tiers between two platforms – Tiers in ServiceNow are pushed to the Bitsight platform with no need to toggle between the two products. After updating tiering information in the ServiceNow application about a vendor’s tier, the tier automatically updates in the Bitsight platform.
- Bitsight Tier Recommender – Rapidly tier vendors by leveraging Bitsight data, the largest network of third party risk management (TPRM) customers in the security ratings service space. It’s based on the best practices of Bitsight users in TPRM, their context about vendors, along with the power of machine learning capabilities. Access this directly in the ServiceNow VRM application.
Go to the Application Configuration page of the ServiceNow VRM application and then click the Push Tier Data button. These will be on by default after the first push.
Use the Application Configuration page to turn off both the synced tiers and Bitsight Tier Recommender.
Bitsight Alerting
Bitsight Alerts can be used to create a Vendor Risk Issue in ServiceNow, kicking off a workflow to remediate and collaborate with your vendors.
Configure alerts during integration to automate how you monitor rating changes that occur in your portfolio and changes to risk vector grades.
Assessment Reporting
Bitsight Assessment Reporting allows you to achieve a new level of efficiency and automation throughout your assessment process. View Bitsight risk vector mappings to cybersecurity related questions in an assessment questionnaire. The report also flags assessment questions that need immediate attention because of their poor performance.
Vendor Collaboration
With the Enable Access Program, you can invite vendors directly from the ServiceNow VRM application to access the Bitsight Security Ratings Platform. The underlying risk data can be accessed and reviewed, and then added as context around your communication and remediation plans.
Recipients will have access to the Bitsight platform to improve their Bitsight Security Rating. This access is at no cost to you and your monitored company. All the features of the program are available to recipients for their own company.
The contact information of the recipient is synchronized between the Bitsight platform and ServiceNow VRM application, which can be used to auto-fill emails sent to third party vendors when requesting access to the Bitsight platform for issue remediation during assessments.