The Risk Summary report [] highlights the worst performing, critical areas for this company relative to Bitsight-recommended peers. The peers are 100 of the most similar companies based on industry, description, and size.
Use this summary to work with your business to make vendor onboarding decisions based on your acceptable levels of risks.
- Past 3 months security ratings.
- Current risk vector grades and the peer median.
- Industry comparison.
- Company info.
- Relationship details.
- Impactful Security Incidents throughout the past year.
- Assessments and flagged sections.
Navigation Options
CM App: Download from the top-right of a company’s Overview page [ Vendor Risk ➔
Reports and Assessments ➔ Download Risk Summary Report].
Included Risk Vectors
High-impacting risk vectors are primarily presented in the report.
Medium-impacting risk vectors are included in the report only if they’re in the bottom 25 percentile (equal to or lower than the bottom 25 out of 100 peers).
Navigation Options
The bottom 25 percentile peer group can be identified in the following areas of the Bitsight platform:
SPM App: Risk Vectors [ Peer Comparison ➔ Risk Vectors]
CM App: Refer to the Similar Companies column in the Program Area Risk displayed in the Vendor Risk: Overview page [ Vendor Risk ➔ Overview].
High-Impacting Risk Vectors
- Botnet Infections
- Spam Propagation
- Malware Servers
- Unsolicited Communications
- Potentially Exploited
- Open Ports
- File Sharing
- Security Incidents
Medium-Impacting Risk Vectors
- TLS/SSL Certificates
- TLS/SSL Configurations
- Web Application Headers
- Patching Cadence
- Server Software
- November 21, 2022: Specified included risk vectors.
- September 24, 2021: Published.
Feedback
0 comments
Please sign in to leave a comment.