In this article:
Welcome to SecurityScorecard! If you’ve been invited to the platform by one of your customers or insurance brokers, you're here to collaborate on improving your security posture and meeting compliance needs. This guide will help you understand what to do next.
Received requests
Once you log in, you’ll land on the Getting Started Page, which includes a section showing your most recent requests. These requests are categorized into three main types:
-
Security Questionnaires
- These are detailed forms asking about your security practices, protocols, and controls and help your customer evaluate your security posture.
-
Action: Review the questions, provide accurate responses, and submit the completed questionnaire.
- These are detailed forms asking about your security practices, protocols, and controls and help your customer evaluate your security posture.
-
Evidence Requests
- Your customer may ask for specific documents or certifications, such as:
- Security policies
- Penetration test reports
- Compliance certifications (e.g., ISO 27001, SOC 2)
-
Action: Upload the requested documentation directly to the platform. Leverage our permission feature to control what users can access the uploaded documentation.
- Your customer may ask for specific documents or certifications, such as:
-
Action Plans
- These are collaborative trackers designed to enable organizations to request that your organization address specific issues or improve your overall security rating.
- Action: Review & fix the issues, or demonstrate a compensating control or provide an explanation on the plan itself for the creator to review. If you have multiple action plans with the same
- These are collaborative trackers designed to enable organizations to request that your organization address specific issues or improve your overall security rating.
The Getting Started page
In addition to viewing your recent requests, the Getting Started Page offers several resources to help you become familiar with SecurityScorecard:
-
Start with the basics:
- Learn the basics, such as understanding your scorecard, your digital footprint, and how to invite new users in case you're not the right person to address a request.
- Learn the basics, such as understanding your scorecard, your digital footprint, and how to invite new users in case you're not the right person to address a request.
-
Self-Monitoring Help Steps:
- Turn on this feature to explore how the platform can help you monitor your own organization's security posture.
- Turn on this feature to explore how the platform can help you monitor your own organization's security posture.
-
Vendor Risk Management Steps:
- Activate this walkthrough to learn how to use the platform for managing third-party risks.
Tips for success
- Stay Organized: Respond promptly to requests to maintain a strong relationship with your customers.
- Collaborate as Needed: Use the platform’s comment or message features to ask clarifying questions or provide updates.
- Meet Deadlines: Ensure you complete tasks before the specified due dates to avoid delays in reviews or assessments.
Need Help?
If you encounter any issues or have questions about using the platform, our support team is here to assist. Check out our other articles or reach out to us by submitting a form here.
Comments
0 comments
Please sign in to leave a comment.