Breadcrumbs

Security Scorecard

image-20250616-103341.png

  • TPRM

  • Suppliers

  • Scoring

  • Cybersecurity


Details

This integration connects GlobalSuite GRC with SecurityScorecard, allowing the import, synchronization, and automatic update of the security rating of vendors from the SecurityScorecard application. This facilitates the continuous evaluation of third parties within your Third-Party Risk Management (TPRM) processes.

With this connection, you can view in GlobalSuite the cybersecurity status of your Vendors managed in real-time, configure automated alerts for critical changes in scoring, and make informed decisions based on objective and updated data.

Features

  • Automatic synchronization of vendor scoring from SecurityScorecard to GlobalSuite.

  • Enrichment of vendor profiles in my portfolio with external cybersecurity indicators.

  • Flexible mapping of vendors between platforms.

  • Integrated visualization of scoring within the TPRM module of GlobalSuite.

  • Change history in ratings for traceability.

  • Compatibility with evaluation, review, and treatment workflows in GlobalSuite.

  • Possibility to include 3rd and 4th parties of my vendors.

Key benefits

  • Objective and continuous evaluation of vendors' cyber risks.

  • Automation of repetitive tasks for evaluation and monitoring.

  • Centralized visibility of cybersecurity status in GlobalSuite.

  • Informed decision-making thanks to real-time data.

  • Reduction of third-party risk through proactive monitoring.

  • Facilitated compliance with regulatory frameworks such as ISO 27001, NIS2, ENS, or GDPR.

Installation

  1. Access the GlobalSuite Marketplace and select the connector with SecurityScorecard.

  2. Authenticate with your SecurityScorecard credentials (API Key).

  3. Configure the mapping of vendors: by name, domain, or unique ID.

  4. Define automatic synchronization frequency (daily, weekly, manual).

  5. Configure alerts and custom risk criteria.

  6. Save and activate the integration.

📌 Prerequisites:

  • Active subscription to SecurityScorecard with API access.

  • Administrator permissions in GlobalSuite to configure integrations.

NOTE: Activating the integration will immediately launch it to continue with the indicated frequency.


To configure the field mapping and where they will be stored in GlobalSuite, use the GlobalSuite Sink connector.


There is the possibility to test the synchronization with a test environment before moving to production. Ask your GSS contact person for more information.



Synchronized parameters

name

domain

grade

grade_url

score

industry

size

last30days_score_change

More information:

https://securityscorecard.readme.io/reference/get_portfolios-portfolio-id-companies