Try our new research platform with insights from 80,000+ expert users
Bitsight Logo

Bitsight Reviews

Vendor: BitSight
4.3 out of 5
Badge Leader
Leave a review

What is Bitsight?

BitSight transforms how organizations manage cyber risk. The BitSight Security Ratings Platform applies sophisticated algorithms, producing daily security ratings that range from 250 to 900, to help organizations manage their own security performance; mitigate third party risk; underwrite cyber insurance policies; conduct financial diligence; and assess aggregate risk. With over 2,100 global customers and the largest ecosystem of users and information, BitSight is the Standard in Security Ratings. For more information, please visit www.bitsight.com, read our blog or follow @BitSight on Twitter.

Get the IT Vendor Risk Management Buyer's Guide and find out what your peers are saying about Bitsight, CrowdStrike Falcon, Trend Vision One and more!
Bitsight is the #3 ranked solution in top IT Vendor Risk Management solutions and #9 ranked solution in top Attack Surface Management (ASM) solutions. PeerSpot users give Bitsight an average rating of 8.6 out of 10. Bitsight is most commonly compared to CrowdStrike Falcon: Bitsight vs CrowdStrike Falcon. Bitsight is popular among the large enterprise segment, accounting for 58% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a financial services firm, accounting for 16% of all views.
Buyer's Guide
IT Vendor Risk Management
August 2025
Get the category report
Helped 867,497 peers since 2012

Featured Bitsight reviews

Read more reviews

Bitsight mindshare

Product category:
IT Vendor Risk Management
As of September 2025, the mindshare of Bitsight in the IT Vendor Risk Management category stands at 10.5%, down from 11.6% compared to the previous year, according to calculations based on PeerSpot user engagement data.
IT Vendor Risk Management Market Share Distribution
ProductMarket Share (%)
Bitsight10.5%
RSA Archer11.2%
SecurityScorecard10.7%
Other67.6%
IT Vendor Risk Management
 
 
Key learnings from peers

Valuable Features

BitSight's most valuable features include third-party risk management, providing insights into security postures without affecting vendors' operations. Users appreciate the ability to list vulnerabilities, conduct scans, and offer risk ratings. The comprehensive assessment of risk vectors covering compromised systems and anomalies is noteworthy. With user-friendly interfaces, a detailed scoring system, accessible web portals, and effective API integration, local companies benefit from its extensive capabilities in identifying external server risks and potential threats.
  • "The best thing about BitSight is the comprehensive list of risk vectors, covering compromised systems, diligence failures, and behavioral anomalies."
  • "The solution is user-friendly."
  • "I prefer BitSight due to its patch management capabilities.The score is a valuable feature.I have contacted the customer support through e-mail and their response rate is fast. I rate the solution a nine out of ten."

Room for Improvement

Bitsight needs better data enrichment and alert system improvements. Alerts sometimes disappear despite existing vulnerabilities, and repetitive asset issues are noted. Details about specific assets and remediation tips are lacking. Score adaptation is slow, affecting the reflection of vulnerability resolution. Challenges exist with the benchmarking and factor analysis features. Technical errors occur in findings, and enhancements in anomaly detection are needed. Correlation between the score and information must be strengthened to prevent misunderstanding.
  • "BitSight could improve the classes and lower-level detections of anomalies that compound the information used to compute the rating."
  • "There may be room for improvement in the methodology for identifying findings, as occasional errors occur on the technical side."
  • "The solution’s benchmarking should be improved."

Pricing

Enterprise buyers report that Bitsight's pricing is generally considered average and reasonable. While some feel it may be expensive, it is perceived as being tailored to large companies. Several users noted that pricing and licensing are handled by different departments, affecting their ability to comment in detail on costs.
  • "The product has a reasonable price."
  • "The solution's price is average."

Popular Use Cases

Organizations primarily utilize Bitsight for monitoring supply chain and security performance management. They assess security scores of their own companies, subsidiaries, and partners. Bitsight offers in-depth insights into security postures, assisting in risk reduction. It focuses on signal intelligence, risk vectors, and detailed information on a company's attack surface. This data is integrated into cyber detection and counter-response strategies to enhance security effectiveness and minimize threats.

Service and Support

Bitsight's support team responds promptly to raised issues, addressing concerns within one or two days. Multiple users report efficient assistance through tickets and emails. Technical support is highly regarded, with some benefiting from local offices in Lisbon, enhancing personal connections. Although personalized experiences may vary, many appreciate the reliability and speed of customer service interactions.

Deployment

Bitsight's initial setup is generally perceived as easy and straightforward. Users rate it highly, with scores ranging from eight to ten out of ten. Some users mention it takes about two to three days to complete, while others say prior experience is beneficial. For telecom companies, minor adjustments are needed for attack surface management. Users appreciate the manual settings and subscription customization, which are user-friendly and allow for quick implementation.

Scalability

Bitsight is recognized for its scalability, providing access to multiple teams within organizations, including large international groups and different regions. Organizations report that they have many users accessing Bitsight, with scalability rated highly. Usage is flexible, allowing permissions based on specific needs without mandatory access for all. The scalability suits both SMBs and enterprises, with no reports of scalability issues. Users appreciate its adaptability and capacity to accommodate a large number of users effectively.

Stability

Users consistently rate Bitsight stability highly, awarding it scores like ten or eight out of ten. They highlight its robustness, noting that while updates to the rating algorithm can cause fluctuations, this is standard for such platforms. Bitsight is praised for maintaining stability across usage.
These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.
Download our IT Vendor Risk Management Buyer's Guide for additional reliable information.

Top industries

By visitors reading reviews
Financial Services Firm
16%
Computer Software Company
11%
Manufacturing Company
10%
Insurance Company
8%
Healthcare Company
6%
University
5%
Government
5%
Energy/Utilities Company
4%
Wholesaler/Distributor
4%
Construction Company
3%
Retailer
3%
Media Company
3%
Comms Service Provider
3%
Legal Firm
3%
Outsourcing Company
2%
Educational Organization
2%
Performing Arts
2%
Recreational Facilities/Services Company
2%
Pharma/Biotech Company
1%
Hospitality Company
1%
Non Profit
1%
Logistics Company
1%
Real Estate/Law Firm
1%
Transportation Company
1%
Engineering Company
1%

Compare Bitsight with alternative products

Go!

Learn more about Bitsight

Bitsight customers

Fannie Mae, Cabela's, BNP Paribas, PWC, AIR Worldwide, Con Edison, The Container Store, OshKosh, Steris, University of South Florida, Emblem Health, Lloyds Bank

Related questions

  • 42
What is your recommended automated audit software for internal and external audit?
  • 4
Vulnerability Management and Risk Management Integration
  • 25
What vendor risk management software do you recommend?
  • 10
What is the best solution for comprehensive Risk Management in financial services?
  • 70
What is the difference between SOC 1, SOC 2, and SOC 3 compliance?
  • 6
When evaluating IT Vendor Risk Management, what aspect do you think is the most important to look for?
  • 15
Which enterprise threat modeling tool do you recommend?
  • 6
What is Security Posture and what categories of Security Posture Management do exist?
  • 5
How many ISO norms do we have in the entire ISO27k security family standards?
  • 6
What should an enterprise risk management plan and strategy include in 2022?

Product Categories

Product Categories
IT Vendor Risk Management
Attack Surface Management (ASM)

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Bitsight Logo
CrowdStrike Falcon vs Bitsight
Trend Vision One vs Bitsight Logo
Trend Vision One vs Bitsight
RSA Archer vs Bitsight Logo
RSA Archer vs Bitsight
Axonius vs Bitsight Logo
Axonius vs Bitsight
Qualys CyberSecurity Asset Management vs Bitsight Logo
Qualys CyberSecurity Asset Management vs Bitsight
SecurityScorecard vs Bitsight Logo
SecurityScorecard vs Bitsight
OneTrust GRC vs Bitsight Logo
OneTrust GRC vs Bitsight
AuditBoard vs Bitsight Logo
AuditBoard vs Bitsight
Cortex Xpanse vs Bitsight Logo
Cortex Xpanse vs Bitsight
Tenable Attack Surface Management vs Bitsight Logo
Tenable Attack Surface Management vs Bitsight
Microsoft Defender External Attack Surface Management vs Bitsight Logo
Microsoft Defender External Attack Surface Management vs Bitsight
IONIX vs Bitsight Logo
IONIX vs Bitsight
CyCognito vs Bitsight Logo
CyCognito vs Bitsight
ProcessUnity vs Bitsight Logo
ProcessUnity vs Bitsight
Black Kite vs Bitsight Logo
Black Kite vs Bitsight
See all alternatives
 
Bitsight Reviews Summary
Author infoRatingReview Summary
Chief Security Officer at Cetelem4.0I use BitSight to monitor security scores for my organization and its subsidiaries. Its most valuable feature is listing vulnerabilities, but the score adaptation could be faster. I previously evaluated SecurityScorecard before choosing BitSight for this purpose.
VP at FUbon4.5I find BitSight valuable for its diverse evaluation points and ease of use, although its benchmarking could be improved. I prefer it over Black Kite for patch management and am considering SecurityScorecard as an alternative.
Telecommunications Engineer at Portugal Telecom4.5Bitsight provides us with comprehensive insights into our security posture, helping to effectively reduce risks. Its user-friendly features allow us to conduct scans and assess security risks. However, the methodology for identifying findings occasionally has errors that need improvement.
SOC at Renault4.0No summary available
Retired at a media company with 1-10 employees4.5I primarily use BitSight for gathering signal intelligence and risk vectors related to a company's attack surface. It offers detailed insights and a user-friendly portal but could improve its anomaly detection to compete better with companies like Qualys.
Cybersecurity Customer Service Manager and Technical Account Manager at Cybersel5.0I use Bitsight for monitoring supply chain and security performance management. Its most valuable feature is third-party risk management, which efficiently retrieves information on third-party security without disrupting vendor processes. However, the factor analysis feature could be improved.