Skip to main content

Security Performance Management

Continuous Monitoring

Vendor Risk Management

Trust Management Hub

Cyber Insurance

National Cybersecurity

Sign in
Submit a request

Bitsight Knowledge Base
Methodologies
Rating Methodologies

Rating Methodologies

How are Bitsight Security Ratings Calculated?
What is a Bitsight Security Rating?
Vulnerability Severity: Bitsight Severity & CVSS
How are Bitsight Security Ratings Calculated Within Parent-Subsidiary Relationships?
Risk Vector Grading with Insufficient Data
User Count Thresholds for Grading Desktop and Mobile Software Risk Vectors
Why Do Bitsight Security Ratings Fluctuate?
Web Application Header Finding Grades
What Content-Security-Policy (CSP) Directives are Assessed?
OS & Browser Version Evaluation
Software Support Life Cycle & End-of-Life Policy

Contents © 2025 BitSight Technologies, Inc. ("Bitsight")

Privacy Policy | Disclaimer | Terms and Conditions | Contact Bitsight | Bitsight Academy | Bitsight Support