Sold by: BitsightÂ
Deployed on AWS
Vendor Insights
Drive accountability and transparency across the organization based on a uniform security performance target. With this governance framework in place, measure the effectiveness of security controls, analyze the attack surface, prioritize findings and track remediation activities. Annual subscription.
Overview
Bitsight pioneered the security ratings industry in 2011, creating our cybersecurity ratings platform. Today, the Bitsight rating is known around the world as a trusted analytic to help organizations understand and manage cyber risk.
Leveraging the Bitsight Security Rating, the only rating independently correlated to the likelihood of a breach and a company's stock performance, over 2,400 companies build trust in their cybersecurity and third-party risk management program. Bitsight helps organizations drive market decisions, like credit analysis, financial ratings, pricing, ESG frameworks, and Mergers and Acquisitions activity. This gives confidence to vendors and the extended organization, enabling a safe and more secure world by empowering better cyber risk decisions.
Bitsight helps organizations identify, quantify, and reduce cyber risk
Bitsight Security Performance Management (SPM) measures an organization's cybersecurity performance over time. With continuous visibility of the organization's extended digital footprint and a differentiated view of the organizations unique hierarchical structure, SPM facilitates organizational cyber risk oversight. Security leaders and their teams rely on BitSight SPM for:
For custom pricing offers, please contact: bitsightawsmp-customoffer@bitsight.comÂ
Highlights
- 44+ trillion raw events collected & 100 billion new events collected each day
- 40 million rated organizations worldwide with 12+ months of historical data included
- For custom pricing offers, please contact: bitsightawsmp-customoffer@bitsight.com
Details
Sold by
Delivery method
Deployed on AWS
Unlock automation with AI agent solutions
Fast-track AI initiatives with agents, tools, and solutions from AWS Partners.
Features and programs
Skip the manual risk assessment. Get verified and regularly updated security info on this product with Vendor Insights.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/12 months |
|---|---|---|
SPM Enterprise Combined | per license (includes 20 benchmarking subscriptions) | $138,550.00 |
Vendor refund policy
No refunds
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA)Â .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Vendor resources
Support
Vendor support
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Bitsight
By SecurityScorecard
By Safe Security
Top
50
In Device Security
Top
10
In Procurement & Supply Chain, Legal & Compliance
Top
10
In Centralized Risk Management
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Cyber Risk Analytics
Advanced platform utilizing 44+ trillion raw events and 100 billion new events daily for comprehensive cybersecurity risk assessment
Security Performance Measurement
Continuous visibility and monitoring of an organization's extended digital footprint with performance tracking over time
Breach Likelihood Correlation
Security rating independently correlated to potential breach probability and organizational stock performance
Third-Party Risk Management
Capability to analyze and evaluate cybersecurity risks across vendor ecosystems and extended organizational networks
Global Organizational Rating
Comprehensive rating system covering 40 million organizations with 12+ months of historical cybersecurity performance data
Threat Intelligence Monitoring
Continuously monitors 10 risk factor groups using non-intrusive data collection methods and commercial and open-source threat feeds
Cybersecurity Risk Rating
Provides quantitative cybersecurity posture evaluation using an easy-to-understand A to F rating system
Vendor Risk Assessment
Enables automated questionnaire completion and validation with integrated inside-out and outside-in risk perspective
Data Collection Methodology
Utilizes proprietary and trusted data collection techniques for comprehensive cybersecurity assessment
Continuous Monitoring Technology
Performs real-time cybersecurity posture tracking across multiple organizations and risk domains
Risk Quantification Model
Utilizes FAIR™ Model for quantifying and analyzing cybersecurity risks with defensible methodology
Risk Signal Aggregation
Automatically ingests diverse telemetry signals from enterprise-wide controls to dynamically represent business risk exposure
Risk Scenario Management
Provides library of built-in cyber risk scenarios with capability to create custom scenarios for comprehensive risk assessment
Multi-Party Risk Visibility
Enables unified cyber risk visibility across first-party and third-party environments in a single integrated platform
Real-Time Risk Tracking
Delivers real-time, dynamic representation of cyber risk posture with continuous monitoring and assessment capabilities
Validated by AWS Marketplace
FedRAMP
GDPR
HIPAA
ISO/IEC 27001
PCI DSS
SOC 2 Type 2
No security profile
-
-
-
-
-
No security profile
Standard contract
No
No
No
Customer reviews
0 ratings
0 AWS reviews
|
69 external reviews
Star ratings include only reviews from verified AWS customers. External reviews can also include a star rating, but star ratings from external reviews are not averaged in with the AWS customer star ratings.
Computer Software
Easy to use. Actionable data and pinpoints where to focus efforts. Immediate ROI.
Reviewed on Sep 05, 2025
Review provided by G2
What do you like best about the product?
BitSight provides our team an outside-in view of our security posture. The daily security ratings are easy to track and give clear insight into areas like potential compromised systems, risky behavior, and probable past incidents. As part of our multi-layered security strategy, BitSight adds a unique layer of visibility that complements our internal tools, helping us with potential blind spots and external risks that we might otherwise miss. I especially like the Ratings Tree as it breaks down risk across different business units so we can quickly pinpoint where to focus our efforts. It doesn’t replace our internal monitoring or detection tools, but its part of our multi-layered defense where BitSight provides an essential external perspective that strengthens our overall defense and helps us communicate and prioritize cybersecurity with leadership. Further Luisa from the CS team is an amazing contact and so is Ciaran; with both of them we're confident we're getting the services that we need without waiting days for a reply. Its also easy to implement and integrate.
What do you dislike about the product?
It's good for us. So nothing I can think of at the moment.
What problems is the product solving and how is that benefiting you?
BitSight provides our team an outside-in view of our security posture. The daily security ratings are easy to track and give clear insight into areas like potential compromised systems, risky behavior, and probable past incidents. As part of our multi-layered security strategy, BitSight adds a unique layer of visibility that complements our internal tools, helping us with potential blind spots and external risks that we might otherwise miss. I especially like the Ratings Tree as it breaks down risk across different business units so we can quickly pinpoint where to focus our efforts. It doesn’t replace our internal monitoring or detection tools, but its part of our multi-layered defense where BitSight provides an essential external perspective that strengthens our overall defense and helps us communicate and prioritize cybersecurity with leadership. Further Luisa from the CS team is an amazing contact and so is Ciaran; with both of them we're confident we're getting the services that we need without waiting days for a reply. Its also easy to implement and integrate.
Aman M.
Great product for security posture management
Reviewed on Aug 15, 2025
Review provided by G2
What do you like best about the product?
This is a great product for generating a comprehensive security posture for our organization and 3rd/4th party suppliers by using risk vectors to provide a quantifiable score.
What do you dislike about the product?
decay times for vulnerabilities after remediation, a capability BitSight is working to address with dynamic scans.
What problems is the product solving and how is that benefiting you?
BitSight gives us visibility into which suppliers are affected by zero-day vulnerabilities. This allows us to quickly identify and contact only those specific suppliers, streamlining communication and enabling us to track their remediation progress effectively.
Steve W.
Great tool for managing external sourced vulnerabilities
Reviewed on Aug 11, 2025
Review provided by G2
What do you like best about the product?
The organization of vulnerability findings by severity, risk vector, type of vulnerability makes it helpful to organize and report on your vulnerabilities. Many findings have been from areas we either didnt know about, or never knew were vulnerable. While the GUI interface is extremely well organized and easy to use, I found it quite helpful using the Bitsight API structure to pull finding totals by Risk Vector, Grade, etc into a spreadsheet that gets regularly updated every few hours. Bitsight has not only helped our company's security posture, but also helped in my knowledge of website construction on a deeper level than I previously had, and Ive been in this field as a developer and a security analyst for over 30 years. Of all the security tools we employ here, Bitsight is probably my preferred tool to use. I find it challenging and easy at the same time.
I find the customer support team an excellent resource. In my 4 years of working with them now, Im sure Ive aggrivated them to no degree with my relentless questions and requests. But they are always there and willing to help me.
I use Bitsight everyday. Its part of my job. I consider it to be my 3rd arm. The loss of this tool would be a significant change in my career.
I find the customer support team an excellent resource. In my 4 years of working with them now, Im sure Ive aggrivated them to no degree with my relentless questions and requests. But they are always there and willing to help me.
I use Bitsight everyday. Its part of my job. I consider it to be my 3rd arm. The loss of this tool would be a significant change in my career.
What do you dislike about the product?
As helpful as it can be, at times there are areas that can be improved as well. Bitsight isnt as always as thorough as it could be. While it does in depth scanning of many of our external resources. there are several with the same vulnerabilities that seemingly get overlooked. Or its like one group of findings gets found one month.. two months later, another group is found with the same vulnerabilities. Also Id love to see a bit more transparency about the formulas used in calculating grades, and RV scores.
Lately, my use of customer support has been not as frequent as their response time has dropped off a bit. Where I used to get responses to questions within a few hours to a day.. now it seems many questions go several days before they get a first response.
Lately, my use of customer support has been not as frequent as their response time has dropped off a bit. Where I used to get responses to questions within a few hours to a day.. now it seems many questions go several days before they get a first response.
What problems is the product solving and how is that benefiting you?
BItsight helps our company in improving its security posture. In the years that I have been administering Bitsight for us, we have improved our security view and the way we look at ourselves immeasurably. Not only myself, my security team, but other peripheral teams in our IT department take stock of what we do here too.
Medical Devices
Great Representatives and Responsive Support
Reviewed on Aug 11, 2025
Review provided by G2
What do you like best about the product?
Bitsight's support representatives are fantastic at showcasing new tools and offering support where needed. They are knowledgeable, friendly, and eager to research topics to provide speedy support.
What do you dislike about the product?
Their platform is great to use and the only hiccups are niche requirements that I, as a user, may have. However, Bitsight has always been eager to create internal enhancement requests for these niche needs.
What problems is the product solving and how is that benefiting you?
Bitsight is providing us with insight into our supply chain's resiliency in terms of cybersecurity.
Health, Wellness and Fitness
Cybersecurity Specialist leveraging the application for third-party reveiws
Reviewed on Aug 01, 2025
Review provided by G2
What do you like best about the product?
Automation with providing vendor questionnaire integration along with secure mechanism for attestations
What do you dislike about the product?
Reporting is Bland and lacks more interactive robust functionality.
What problems is the product solving and how is that benefiting you?
End-to-End third-party risk management with vendor monitoring.