Bottom-line rating of your supplier’s cyber risk, considering external cyber posture assessment, answers to Smart Questionnaires™ and business context reflecting the actual business impact of a potential attack. The Cyber Risk Rating has five levels: Bad, Poor, Fair, Good and Excellent.
A rating from 0–100 is calculated based on your third party’s responses to our Smart Questionnaire™. You can decide on how your questions should be calculated in the rating, according to your company’s internal policies and risk appetite. You can also flag important “deal-breaker” questions, to quickly identify vendors that don’t comply with internal policies.
A rating from 0-100 that reflects an objective overview of Panorays’ non-intrusive evaluation of your vendor’s attack surface through the analysis of externally available data. Panorays performs hundreds of tests, such as collecting information on exposed assets or a lack of security best practices. Tests are performed to assess three different layers:
Network & IT: web, e-mail and DNS servers,TLS protocols, asset reputation, cloud solutions and other exposed services.
Application: web applications, CMS, domain attacks, etc.
Human: employees’ attack surface, social posture, presence of a dedicated security team, etc.
Panorays provides companies with a rapid, accurate view of supplier cyber risk,
while providing vendors with the ability to improve it.
Panorays ratings are based on a rich risk context, taking into account the business relationship with your vendor, external assessment results considering human factors, and responses to Smart Questionnaire™.
If suppliers feel that any data is inaccurate, they can easily dispute the findings with a click. Panorays validates the data internally within 24 hours, accepts or rejects the claim and updates the findings. The supplier’s rating is then automatically updated accordingly.
Panorays generates a prioritized remediation plan for each vendor with mitigation steps for gaps in both the Smart Questionnaire™ and external assessment. Companies set a desired Cyber Risk Rating to customize the remediation plan, and can track progress using the platform.
When I looked at other security rating services,
they focused more on the exterior scan and gave
scores, but then I needed to go to another
supplier who could handle the questionnaires.
With Panorays, it’s all one system.
Build automatic, dynamic security questionnaires
Gain visibility into your third party’s digital footprint
Easily engage with your vendors on a single platform