Ratings

Issue Types

• Address score-impacting CVEs in your Scorecard
• Park domains properly and keep them secure
• Certificate Lifetime Is Longer Than Best Practices
• Certificate Without Revocation Control
• Certificate Is Expired
• Site Does Not Use Best Practices Against Embedding of Malicious Content

See all 40 articles

Getting Started & Setting Up

• How to log in with a passkey for FIDO authentication
• Provision your SecurityScorecard users with SCIM
• Create API tokens for the SecurityScorecard platform
• Choose how to log into our platform
• Personalize your reports and communications with your logo
• How do I reset my SecurityScorecard password?

See all 12 articles

Product Overview

• Introducing Daily Scanning Cadence!
• Preparing AWS integration for compliance
• Check platform access with Audit Log
• View compliance through your unique lens with Custom Frameworks
• Get actionable information about your organization or vendors you follow with Scorecard Overview
• Get a quick, actionable view of compliance

See all 20 articles

Analysis Reporting

• Create your own security narrative with a Custom Report
• Track vulnerabilities and affected parties with the CVE Impact on Companies report
• Gauge likelihood of a ransomware attack with the Ransomware Analytics report
• Track issue prevalence and affected organizations with Issue Type Trends report
• Prioritize vendor risk with the Company Triage report
• Track vendor score improvement with the Vendor Engagement report

See all 12 articles

Scoring Updates

• Prepare for Scoring 3.0
• Types of Reports accepted for Evidence Based Score Gain
• A Closer Look at Scoring 3.0 Vocabulary and Breach Likelihood
• Recommended actions to improve your Scoring 3.0 score
• Evidence-based score gain
• Scoring Recalibration FAQ

See all 9 articles

Scorecard

• Understanding the concept of related domains
• Tag your Scorecards and assets for meaningful contexts
• Understanding Custom Scorecard Licensing in SecurityScorecard
• Understanding Breaches on SecurityScorecard
• Now manage your subsidiaries with SecurityScorecard (part of Attack Surface capability)
• Smoothing toggle in the History Tab

See all 18 articles

Third Party Risk Management

• Sending a questionnaire to your Team
• Upload a Questionnaire in Excel Format
• Create a Portfolio
• Contact partners or vendors to initiate collaboration
• Use Action Plans to collaborate with your vendors on security improvements
• Manage supply chain risk with Automatic Vendor Detection

See all 14 articles

Best Practices

• Managing your subscription
• Maintain a high or perfect score
• Upload .csv files successfully
• Best Practices in Organizing your Portfolios
• How Does SecurityScorecard Help with Third Party Risk Management

How To

• Resources to whitelist for navigation issues within the SecurityScorecard Platform
• Bulk-upload your custom compliance frameworks for quick, easy visibility
• Report a Timeout Due to Large Dataset
• Five steps to improve your average Portfolio score