Skip to main content

Scorecard: Unified risk view (Early Access)

Catherine Fuentealba
  • Updated

Use the Scorecard overview page to view updates and important tasks for your organization and the organizations you monitor. The dashboard surfaces multiple security risk views in one place, providing deep insight into an organization's security posture beyond a single score.

Note: This article applies to the new Scorecard overview, currently available through Early Access. To enable it, go to the Early Access Center and turn on the Unified risk view toggle.

Prefer the current experience? See Scorecard overview

Scorecard header

The header provides a high-level summary of the monitored entity’s identity and performance, along with quick-access tools for reporting and remediation.

yourorg_ascorecard.png

The header consolidates essential identity and performance data for any organization you are viewing. Here you can:

  • See details such as the organization's name, primary domain, industry, and the number of followers monitoring the Scorecard.
  • View the current letter grade and numerical score, including the most recent score change (indicated by an up or down arrow).
  • Expand an artifact to send a questionnaire or view a list of certifications from the organization's Evidence Locker.
    Screenshot 2026-01-08 at 6.56.45 PM.png
  • Create an Action Plan or use the Score Planner to simulate how resolving specific issues will impact the score.
  • View Recommended Rules to create notifications about important events in the organization's Scorecard.
  • Send Requests for Action Plans or Questionnaires. You can also invite organizations to join SecurityScorecard.
  • Open the Actions menu to access additional utilities such as Generate report, View Attack Surface, Share this Scorecard (your organization only), or Schedule a support call.

Vendor-Specific Navigation
When viewing a Vendor's Scorecard, an additional navigation bar is available below the organization details. These options are specific to third-party risk management and do not appear when viewing your own organization.

Screenshot 2026-01-08 at 6.48.44 PM.png

From this view, you can:

  • Create a Custom Scorecard to help your team monitor specific segments of the organization's Digital Footprint.
  • Add the organization to a Portfolio or view the ones it's in.
  • Select a business impact level to help your VRM team give this organization the appropriate level of attention and priority for mitigating third-party risk.
  • View and add tags.
  • View additional vendor details, along with Requests, Contacts, and Notes.

Security Scores

The Security Scores section provides a visual representation of an organization's current security grade and score stability over time relative to its industry.

securityscore.png

This section combines real-time grading with historical data to illustrate an organization’s security performance. Here, you can:

  • View the organization's current numerical score and letter grade compared directly against the Industry average.
  • Track score stability over a selected time range. You can hover over any point on the timeline to see the specific score for that date.
  • See highlighted major events in the time, such as recalibrations, that may impact the scoring model or historical trends.

You can take direct action or dive deeper into the data from this view:

  • Improve Score: Select this option to immediately enact a score improvement Action Plan for the organization you are viewing.

  • View Full History: Click this link to track all past score changes and observe long-term trends for the entity.

Breach Susceptibility Indicator 

The Breach Susceptibility Gauge is a directional visual indicator that communicates an organization’s relative likelihood of experiencing a security breach.

breachsusceptibilityscore.png

This gauge leverages historical data and predictive correlations to provide a comparative look at an organization's security posture.

This indicator updates automatically as global threat patterns evolve and the relationship between issue types and breach events shifts. By analyzing historical correlations, the gauge provides a "forward-looking" view based on patterns observed in real-world security events.

For more information, see Understanding the Breach Susceptibility Indicator (BSI).

Ransomware Score

The Ransomware Score is a specialized risk indicator focused on the vulnerabilities and attack vectors most commonly exploited in ransomware attacks.

ransomwarescore.png

This score isolates the environmental attributes most strongly correlated with ransomware deployment, providing a dedicated view of this threat. The model incorporates security gaps, such as specific port exposures or unpatched services, that historical data shows are preferred by ransomware operators

Highest-risk score factors

An organization's overall security score is calculated based on 10 groups of risk factors. The factors displayed in this section are those currently having the greatest impact on the score.

highestriskscorefactor.png

This view shows the individual letter grade and numerical score for each specific factor. The numerical value next to the score identifies the recent score change for each factor group.

You can select See Score Factors to view the full list of factors and their underlying issues.

Issues by Breach risk

Each risk factor comprises multiple issues that expose an organization to potential attacks. This section categorizes these findings into three breach risk levels (High, Medium, and Low) corresponding to the likelihood of an attack.

issuesbybreachrisk.png

You can drill down into each issue or select See All Issues to learn more about each finding, where it was found, and how you can resolve it. 

Security Evidence

The Security Evidence section centralizes compliance documentation found in the Evidence Locker and completed questionnaires to streamline security assessments across organizations. 

The actions available in this section change depending on whether you are viewing your own organization’s profile or a monitored entity:

  • For your organization: Use this section to proactively manage your security posture. Select Upload documents to add files to your Evidence Locker or Go to questionnaires to view and answer pending assessments.

    Tip: Maintaining an up-to-date Evidence Locker allows those vetting you to see your credentials immediately, significantly speeding up the assessment process.

  • For other organizations: Use this section to review shared materials or gather required information. Select Request documents to ask the organization to upload specific certifications to their Evidence Locker, or click Send questionnaires to initiate a new assessment.


 

Was this article helpful?

Recently viewed

Related articles

Related articles