Knowing your Cyber Risk Score gives you the information necessary to protect your business from cyberattacks and increases your awareness of third-party risks. NormShield Cyber Risk Scorecards allow you to monitor your own cyber risks as well as the cyber hygiene of your entire vendor ecosystem. With easy-to-understand letter-grade scores, you will have a clear view of your security posture, understand how you compare against your competitors and know your status on relevant compliance standards and regulations.

The NormShield cyber risk scorecard enables companies to self-assess their own cyber risk posture or perform non-intrusive cyber risk assessment of third-parties (suppliers, target acquisitions, etc.). Also, insurance companies can quickly assess the cyber risk posture of companies before underwriting cyber insurance policies. Executives get an easy to understand cyber risk scorecard and IT security teams get prioritized technical risks/vulnerabilities so that they can quickly identify and mitigate the riskiest problems.

Self-Risk Assessment

Protect yourself from cyber attacks and understand what hackers already know about you. NormShield’s Cyber Risk Scorecard is a complete solution that provides actionable and easy-to-understand information for business executives while providing detailed drill-down technical data and recommendations for information security personnel.

Third-Party Risk Management

Sharing confidential and critical information with your suppliers and vendors is part of doing business. How do you know your vendors take cybersecurity as seriously as you do? Your ecosystem multiplies your risk and it’s important to know how secure your vendors are. NormShield Cyber Risk Scorecards allow you to monitor and manage third-party cyber risks for thousands of suppliers in minutes.

Cyber Insurance

Cyber insurers determine a business's cyber risk by asking a list of questions. With NormShield Cyber Risk Scorecard, cyber insurers can evaluate the cyber risk of any business within minutes and provide better coverage and service. Cyber insurers can also continuously monitor the changes in the cyber risk scores of cyber insurance policy holders.

Rapid Cyber Risk Scorecard

Fast. No-setup. Non-intrusive.
  • The Rapid Cyber Risk Scorecard evaluates your company in 60 seconds.
  • Instant cyber risk posture analysis
  • 11 categories, 250+ security checklist items
  • User interface or API-based and fully automated
  • Optimized for Cyber insurance underwriters and vendor due diligence

Comprehensive Cyber Risk Scorecard

Detailed. Non-intrusive. The Comprehensive Cyber Risk Scorecard is for those who need detailed findings.
  • Non-intrusive, outside-in scan using only the domain name
  • 20 categories, 500+ security checklist items
  • Visibility to a detailed cyber risk posture analysis
  • Perfect for self-risk assessments and vendor risk management

Instant Risk Assesment

The Rapid Cyber Risk Scorecard evaluates any company’s security posture in 60 seconds. Organizations can generate up to 100,000 scorecards, to measure the risk of your entire supply chain in less than a day Our scorecards are optimized for third-party risk management for supply chain vendors, cyber insurance underwriters and vendor due diligence for M&A activity. For those who need deeper analysis, the comprehensive Cyber Risk Scorecard gives you a more detailed scorecard in just few minutes.

Technical Depth

Unlike some other tools that evaluate risk score based on basic view of a company’s cyber posture (e.g. open ports), NormShield evaluates a company in 20 different categories and backs all of its scores with technical data including CWE, CVSS, FIPS-199 impact level, FISMA maturity level and whether the company is being openly targeted (e.g. Hacktivist Shares)

Compliance Check

NormShield classifies its findings into FISMA Cyber Security Framework Area and Maturity Level, NIST 800-37 Process Step. This classification allows you to measure the compliance level of the target company for different regulations including NIST 800-53, FISMA, ISO 27001, COBIT and GDPR.

Active Scan Option

Unlike other scorecards, NormShield Cyber Risk Scorecard offers an active scan option which allows customers to validate the OSINT data with automated testing (including penetration data).

Complete & Easy to Use

NormShield cyber risk scorecard is a complete solution that provides actionable and easy to understand information to business executives while providing detailed technical data and recommendations to information security personnel.

API Integration

NormShield provides a data source subscription with a Restful API for customers with more advanced needs. With API integration, companies and partners can build risk assessment automation for advanced use cases.