In this article:
At SecurityScorecard, we are proud to continuously deliver hundreds of innovative features throughout the year, enhancing the way you understand, communicate, and collaborate to reduce risk. Because we move quickly, we want to ensure that we are communicating all of our innovations to you effectively. So, twice a year, we package our new features and improvements into a release, so you can effectively leverage our product suite.
About this release
Q2 '21 Release empowers you to see, act, and report on risk.
How do you manage and report on cybersecurity risk in a rapidly changing world?
Security leaders are facing a trifecta of challenges: more sophisticated and frequent cyber attacks, expanding regulations and government mandates, and organizational leaders seeking risk management assurances. CISO’s SecOps and VRM teams need complete visibility to threats across their entire attack surface, with insights to take immediate action, and timely reporting for key stakeholders.
SecurityScorecard empowers you to see and understand cybersecurity risk in your organization and across your ecosystem with 360° visibility and seamless workflow integration with your security stack.
How do you keep ahead of rapidly changing risk?
- See, discover and report on the entire threat landscape: Enable accurate and informed decisions, and provide real-time reports on results.
- Integrate 360° End-to-End Automation: The Integrate360° Marketplace helps automate your security infrastructure with integrated apps, security intelligence, and APIs.
- Continuously Monitor and Ratings On-Demand: SecurityScorecard’s new Sentinel decodes the global IP address space for ratings on any organization in minutes.
Forrester consulting study
Read Forrester’s Total Economic Impact Study and learn how customers who have implemented SecurityScorecard Ratings and Atlas platforms were able to scale their TPRM programs, significantly reduce time spent on security assessments, and realize triple-digit ROI over three years.
Read our Q2 '21 Release notes
You need a modern security risk ratings platform that’s built at cloud-scale to keep pace with the challenges of today, and ready for where your business is going tomorrow. SecOps teams will discover improved visibility, automation that speeds action, and supercharged ratings that accelerate decision making. Check out all that’s new across the SecurityScorecard platform.
Ratings platform release notes
Fast Score
Rate any organization in under 5 minutes with new SecurityScorecard Sentinel scanning engine
Deliver the information needed, fast. This is imperative for situations requiring on-demand ratings on a new entity, such as determining risk in M&A or cyber insurance.
Company Hierarchy
Drill into subsidiaries, business unit, or brands and view security data specific to a particular part of the organization
Security teams are able to understand how different subsidiaries and departments are doing in terms of cybersecurity to know where to put more focus.
Custom Scorecard
Create individualized views of security data and reporting for business units, geographies, and specific targeted organizations
Vendor Risk Managers are able to focus on the exact business unit they are doing business with, while still seeing the bigger picture of the parent entity to assess the risk properly.
Digital Footprint
Discover and see your entire threat landscape, identify shadow IT, and continuously monitor changes in your digital ecosystem
CISO’s and SecOps teams get a complete picture of the IT estate - including all endpoints, apps, and web domains, to prevent shadow IT from becoming a security threat.
SecurityScorecard Sentinel
See faster, get more actionable information, and respond faster to keep up with threat actors
SecOPs teams are able to react quickly to threat actors, responding to Zero-Day incidents faster, and reducing the risk exposure timeline.
Board Reporting
Provides real-time board-level reporting and trends for your digital ecosystem
Don’t spend hours poring over data to report to executives. Get board-level reports offering insights on ecosystem risk trends, compliance, and more, packaged for delivery in minutes.
Evidence Locker
Open exchange of VRM data to automate and accelerate vendor risk security assessments
Evidence Locker is your single source for TPRM documentation, allowing teams to automatically populate vendor and compliance questionnaires with stored data by exchanging this information between Atlas and Ratings.
Commenting on Scorecards
Provide additional context for business partners assessing your Scorecard
Give additional details to companies that follow your organization. Scorecard comments appear on your Scorecard page and in your Company Profile.
Company Profile Enhancements
Proactively publish security-related information and curated details
Import non-confidential company data to streamline the completion of your company profile. A completed profile shows that your organization is taking cybersecurity seriously.
2-Factor Authentication
Add an extra layer of security, protecting your organization
Choose among several common authenticator apps to implement two-factor authentication.
In-Platform Email Enhancements
Easily invite vendors to collaborate for a more secure supply chain.
Fine-tune or co-brand your invitations to vendors, then set and track vendor improvements by setting score expectations.
Atlas release notes
Evidence Locker
Open exchange of VRM data to automate and accelerate vendor risk security assessments
Evidence Locker is your single source for TPRM documentation, allowing teams to automatically populate vendor and compliance questionnaires with stored data by exchanging this information between Atlas and Ratings.
In-platform Email Enhancements
Co-branded emails demonstrate your organization’s commitment to risk management in your supply chain partnerships
Make it easier for your questionnaire recipients to recognize and respond to Atlas questionnaires right away by including your organization’s brand on questionnaire emails. Co-branding emails through Atlas takes seconds to set up and delivers a consistent experience to your vendors.
Email Lead-In Template
Prepare key contacts for an upcoming action through Atlas
Enlist collaboration while demonstrating that you take risk management seriously. Simply copy our lead-in email template from within Atlas, paste it into your email, and send it right away. It’s quick, easy, and builds trust while setting the expectation an invite from Atlas is forthcoming.
First-Time Receiver Experience
Help new recipients get started responding to Atlas questionnaires
First-time questionnaire recipients receive an overview of Atlas and SecurityScorecard, the Autocomplete feature, and a clear call to action on the assigned questionnaire.
Chat Bulk Notifications
Consolidate and aggregate collaborative communications so you never miss an update
Communicating with your vendors is easy and secure in Atlas, eliminating the need for email back and forths. We’ve eased and streamlined our email notifications to you so that you only receive one email for chats in a questionnaire within a 3-hour window. Our emails include a link to the questionnaire with the messages, so you can respond to them all at once.
Update Due Date
Publish and maintain expectations while collaborating with vendors and other 3rd-parties
Extend deadlines for questionnaire responses within Atlas. It’s easy to revise dates, which are reflected on your Sent queue, the vendors’ Answer queue, and the questionnaire Details screen.
Integrate360° Marketplace release notes
Take your security to the next level with 40+ integrations, additional data, & service providers.
Integrate360° is SecurityScorecard’s marketplace of integrations that work with what you have. Discover and deploy integrated solutions to optimize your security workflows, access even more security intelligence, and accelerate risk mitigation.
CybelAngel Data Integration
Resolve external threats before they wreak havoc with CybelAngel data in your Scorecard
CybelAngel is the world-leading digital risk protection platform that detects and resolves external threats across all layers of the Internet. CybelAngel data integrated into SecurityScorecard gives you an aggregated view into exposed confidential documents and credentials that have been found online for your organization under our Information Leak factor.
DarkOwl Data Integration
Stay ahead of threats in the darknet with DarkOwl data in SecurityScorecard
DarkOwl is the world's leading provider of darknet intelligence and offers the largest commercially available database of darknet content. The DarkOwl integration for SecurityScorecard integrates DarkOwl’s DarkINT exposure for your Scorecard and those you follow under Hacker Chatter, providing a highly unique lens into exposure in the dark web.
HackerOne Data Integration
Access the most relevant security issues published by HackerOne from SecurityScorecard
HackerOne is the industry standard for hacker-powered security, partnering with the global hacker community to surface the most relevant security issues before they can be exploited by criminals. We are partnering with HackerOne to bring you positive signals under Patching Cadence for the Scorecards you follow, letting you know when a Hacker Report is published through HackerOne’s public program.
Jira App
Automatically create Jira tickets based on events triggered by SecurityScorecard
Empower your team to work more productively with the ability to automatically create and assign Jira tickets using SecurityScorecard’s Rule Builder. Create your own rules or leverage our predefined rules so your team never misses a change on your scorecard.
Slack App
Automate actions and work more productively with SecurityScorecard and Slack
The Slack app for SecurityScorecard enables you to work more productively and ensure that your team never misses a change on a Scorecard. This app extends the power of the SecurityScorecard platform with the ability to set up notifications in a designated Slack channel based on Scorecard changes and events.
Microsoft Teams App
Get real-time alerts for just-in-time action based on SecurityScorecard changes
Seamlessly collaborate with your team to mitigate risk based on changes in SecurityScorecard. This SecurityScorecard app for Microsoft Teams app lets you set up notifications in designated channels in Microsoft Teams using our Rule Builder.
Zapier App
Drive productivity by seamlessly connecting SecurityScorecard to over 3,000 apps in Zapier
Zapier is the leading integration platform as a service (IPaaS) provider, enabling you to instantly connect the tools you work with over 3,000 business applications and productivity tools. SecurityScorecard’s app for Zapier lets you instantly integrate SecurityScorecard data with the applications you rely on, driving security productivity and effectiveness in your organization.
Zendesk App
Empower a more productive team with automated alerts in Zendesk based on Scorecard changes
Security and IT teams work in Zendesk to collaborate on issue and ticket resolution. Empower your team to work more productively and efficiently with SecurityScorecard’s app for Zendesk by setting up alerts based on changes within SecurityScorecard. Leverage our Rule Builder to specify rules and receive updates in Zendesk, so you can take real-time action.
CFGI
Improve your security posture and continuously monitor third-party risk with CFGI
CFGI is a premier managed security service provider (MSSP) partnering with SecurityScorecard to deliver Security Risk Monitoring services to improve your security posture. Learn more about CFGI and our combined services on this page.
Coupa Panel App
Reduce risk exposure and get control of vendor risk with SecurityScorecard for Coupa
SecurityScorecard’s Panel App for Coupa helps procurement teams speed up vendor onboarding, streamline visibility into vendor risk, and decrease risk exposure. Embedding SecurityScorecard Ratings into Coupa empowers companies around the world with the visibility and control they need to make smarter spending decisions and prioritize vendor security assessment
Diligent
Empower board directors and executives to have productive conversations around risk
Diligent is the pioneer of modern governance, empowering leaders to turn effective governance into a competitive advantage. Diligent's Cyber Risk Scorecard, powered by SecurityScorecard, provides organizations with a data-backed cyber risk score based on SecurityScorecard data.
Exiger
Gain real-time comprehensive assessment of supply chain & vendor risk
Exiger’s DDIQ automated due-diligence platform and SecurityScorecard combine to create a common operating picture across cyber, financial, operational, and reputational risks to combat the ever-evolving threat landscape that corporations and government agencies are forced to navigate. Exiger’s combination of people, process, and technology leverages the best of automation and expertise to give you supply chain peace of mind - including SecurityScorecard cyber ratings - through Industrial Health Illumination, Entity Vetting, Supply Chain Analytics, Industrial Health Illumination.
IBM OpenPages
Build a 360° view of your vendors with SecurityScorecard Ratings in IBM
IBM OpenPages Third Party Risk Management (TPRM) assists in efficiently managing third-party relationships and engagements to improve business performance. It helps reduce disruption and possible negative impacts to the organization's compliance, brand and/or operations stemming from a vendor’s inability to deliver. SecurityScorecard’s out-of-the-box integration with IBM OpenPages gives you instant and real-time visibility into the security posture of your vendors.
Onspring
Activate third-party risk remediation in real-time using continuous monitoring in Onspring
Onspring delivers cloud-based solutions for internal audit, risk management, compliance, legal, and operations teams—all built on a flexible, no-code platform. Integrating security ratings into Onspring gives you visibility into third-party security vulnerabilities and enables you to automate mitigation plans within Onspring, propelling better, faster, and data-driven third-party risk management decisions.
ServiceNow for Vendor Risk Management Version 2.1
Embed even more data from SecurityScorecard Ratings into ServiceNow third-party risk management workflows
Embedding security ratings into ServiceNow brings you SecurityScorecard’s continuous monitoring for every vendor in your portfolio. Our latest upgrade to SecurityScorecard’s ServiceNow integration Vendor Risk Management imports issue-level findings for your vendors into ServiceNow, bringing you even more data in a single pane of glass and is compatible with Quebec, ServiceNow’s latest version.
Archer® GRC Cloud Integration Version
Integrate security ratings into Archer with faster performance and Archer cloud support
Scale and enhance your vendor risk management with SecurityScorecard Ratings embedded into Archer® GRC platform Our recent enhancements to our integration with Archer brings you more scale, faster performance, and support for Archer cloud.
Salesforce Lightning App
Embed security ratings into your Salesforce Accounts for a comprehensive view of ecosystem risk
Continuously monitor the security posture of your entire third-party ecosystem with SecurityScorecard’s Salesforce Lightning App. See the top-level grade and score, 10 factor scores, count of new issues over time, and invite your vendors to view their Scorecard right from Salesforce.