Try our new research platform with insights from 80,000+ expert users
Bitsight Logo

Bitsight Reviews

Vendor: BitSight
4.1 out of 5
Badge Leader
Leave a review

What is Bitsight?

Bitsight leads in cyber risk intelligence, utilizing AI to give organizations real-time visibility into cyber threats, helping them identify and mitigate risks across their infrastructure and third-party ecosystems.

Get the Bitsight Buyer's Guide and find out what your peers are saying about Bitsight, CrowdStrike Falcon, TrendAI Vision One and more!
Bitsight is the #3 ranked solution in top IT Vendor Risk Management solutions and #5 ranked solution in top Attack Surface Management (ASM) solutions. PeerSpot users give Bitsight an average rating of 8.2 out of 10. Bitsight is most commonly compared to CrowdStrike Falcon: Bitsight vs CrowdStrike Falcon. Bitsight is popular among the large enterprise segment, accounting for 57% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a financial services firm, accounting for 15% of all views.
Buyer's Guide
Bitsight
March 2026
Get the report
Helped 884,797 peers since 2012

Featured Bitsight reviews

Read more reviews

Bitsight mindshare

Product category:
IT Vendor Risk Management
As of March 2026, the mindshare of Bitsight in the IT Vendor Risk Management category stands at 6.9%, down from 11.2% compared to the previous year, according to calculations based on PeerSpot user engagement data.
IT Vendor Risk Management Mindshare Distribution
ProductMindshare (%)
Bitsight6.9%
OneTrust GRC8.7%
SecurityScorecard7.5%
Other76.9%
IT Vendor Risk Management

PeerResearch reports based on Bitsight reviews

TypeTitleDate
CategoryIT Vendor Risk ManagementMar 24, 2026Download
ProductReviews, tips, and advice from real usersMar 24, 2026Download
ComparisonBitsight vs SecurityScorecardMar 24, 2026Download
ComparisonBitsight vs OneTrust GRCMar 24, 2026Download
ComparisonBitsight vs RSA ArcherMar 24, 2026Download
Suggested products
TitleRatingMindshareRecommending
CrowdStrike Falcon4.3N/A97%138 interviewsAdd to research
TrendAI Vision One4.3N/A98%103 interviewsAdd to research
 
 
Key learnings from peers

Valuable Features

Bitsight excels in third-party risk management, vulnerability identification, and external scans providing visibility into exposed assets. It offers valuable ratings, helps manage vendors, displays risk vectors, and simplifies task assignments. Users appreciate detailed anomaly information, user-friendly web portal, and API integration. Its ratings, frequent scans, and comprehensive reporting enhance security posture, reduce risk, speed up remediation, improve compliance programs, and build customer trust.
  • "My advice to others looking into using Bitsight is that it provides a lot of information that was not available before, and it is especially good in recon as it can identify many things about an organization that have never been found earlier, making it a valuable tool."
  • "Bitsight has positively impacted my organization by improving security and customer trust, giving us continuous monitoring so we now find misconfigurations within hours instead of days or weeks, which directly improves our overall security posture and reduces risk as we catch high-risk exposures early, especially unexpected cloud assets or testing endpoints that accidentally went public."
  • "Bitsight gives me a holistic view of my entire security posture, which is something any organization would want to have after getting a tool such as Bitsight."

Room for Improvement

Bitsight needs to enhance data enrichment and alert system accuracy, reduce data discrepancies, and address false positives. Improvements in score adaptation time, factor analysis, and benchmarking are necessary. Validation mechanisms, comprehensive scanning, risk prioritization, and customizable reporting should be enhanced. Facilitation of integration with CI/CD pipelines and DevOps tools is also required. Users desire features such as leaked credential alerts, vulnerability categorization by severity, and enhanced methodologies for identifying technical findings. Better scan scheduling and data accuracy are needed.
  • "I chose 8 out of 10 because if we receive invites from clients every 45 days, our subscription ends, and we have to renew it."
  • "There are areas for improvement; we do notice sometimes finding vulnerabilities which gives us visibility to find them quickly. However, there could be a mechanism they can build on top of that for validation as they identify the issues."
  • "We found that some of the findings are clear false positives, but they still report that, and based on that, the rating goes down until we rectify them."

Pricing

Many users find Bitsight pricing to be average, with some noting it is reasonably priced. However, some perceive it as expensive and more oriented towards large companies. Pricing evaluations and administration are typically handled by different departments, making it challenging for individuals to provide detailed insights regarding costs.
  • "The product has a reasonable price."
  • "The solution's price is average."

Popular Use Cases

Entities primarily use Bitsight for monitoring supply chain and security performance management. They rely on it to check security scores, assess security posture, identify vulnerabilities in networks and web applications, and gather signal intelligence. Bitsight aids in external security assessments by providing ratings based on asset vulnerabilities. Users benefit from real-time detection and notification of security issues, enabling quick remediation and fostering customer trust through improved security ratings.

Service and Support

Customer service and support from Bitsight demonstrate promptness and efficiency. Teams often resolve issues quickly, with responses arriving within days. Technical support proves effective, especially for those with geographic advantages. Professional service assists in rectifying false positives and rating adjustments. Fast email responses contribute to a positive experience. Various teams such as pre-sales and customer success ensure effective customer interactions. Satisfaction with support is high, often rated 10 out of 10.

Deployment

Bitsight's initial setup generally receives high marks for being straightforward. Companies find it easy and quick, often completed in just a couple of days. Users with prior experience may find the process even smoother. Although telecommunications companies might face additional work to clean up the attack surface, they still report the process as manageable. Pricing and licensing experience is deemed fair, with no significant challenges reported in that aspect.

Scalability

Bitsight demonstrates strong scalability, able to accommodate diverse organizations ranging from SMBs to large enterprises. Users report implementing Bitsight across various teams with seamless expansion based on permissions and asset management. Its international user base benefits from Bitsight's cloud capabilities, ensuring effective scaling without concerns. With high ratings for scalability, organizations highlight Bitsight's adaptability in supporting numerous users, establishing it as an efficient option for growing needs in varied regions.

Stability

Users commend Bitsight for its strong stability, consistently rating it highly. Some rate it a perfect ten, while others note it as very stable with an eight out of ten. Even when algorithm updates occur, these changes are considered normal and do not impact the reliability of the platform. Bitsight is regarded as stable, indicating satisfaction with its performance.
These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.
Download our Bitsight Buyer's Guide for additional reliable information.

Review data by company size

By reviewers
Company SizeCount
Small Business3
Large Enterprise4
By reviewers
By visitors reading reviews
Company SizeCount
Small Business100
Midsize Enterprise95
Large Enterprise262
By visitors reading reviews

Top industries

By visitors reading reviews
Financial Services Firm
15%
Manufacturing Company
10%
Computer Software Company
7%
Insurance Company
7%
Media Company
6%
University
5%
Government
5%
Healthcare Company
5%
Retailer
4%
Wholesaler/Distributor
4%
Outsourcing Company
4%
Energy/Utilities Company
4%
Comms Service Provider
3%
Construction Company
3%
Legal Firm
2%
Educational Organization
2%
Performing Arts
2%
Recreational Facilities/Services Company
2%
Pharma/Biotech Company
2%
Marketing Services Firm
1%
Hospitality Company
1%
Non Profit
1%
Real Estate/Law Firm
1%
Transportation Company
1%
Logistics Company
1%
Consumer Goods Company
1%
Engineering Company
1%

Compare Bitsight with alternative products

Go!

Learn more about Bitsight

Bitsight empowers over 3,500 customers by revealing security vulnerabilities in their extensive datasets, allowing teams to prioritize threat detection and remediation. With its unified intelligence platform, it supports monitoring across cloud environments, digital identities, and third-party networks. This approach strengthens cybersecurity defenses, equipping executives and security teams to manage risks effectively before they impact operations.

What features make Bitsight stand out?
  • Third-party risk management and vulnerability listing for in-depth security insights.
  • Detailed security ratings, asset scans, and comprehensive reporting.
  • Continuous visibility into external assets to identify and rectify misconfigurations.
  • API integration for efficient system tracking and task management.
  • Early detection of vulnerabilities with an extensive risk vector list.
What benefits or ROI can users anticipate?
  • Enhanced security posture and reduced threat exposure.
  • Improved client trust through transparent security scoring.
  • Streamlined risk reduction strategies.
  • Comprehensive insights into supply chain and security performance.
  • Faster identification and remediation of internet-facing vulnerabilities.

Organizations across industries implement Bitsight to monitor supply chains and assess security performance, gaining insights into external security vulnerabilities. This proactive approach strengthens cybersecurity strategies and helps maintain transparent communication of security postures, boosting trust and safeguarding against potential threats.

Product Demo

Interactive Bitsight demo

Bitsight customers

Cabela's, Belgium Center for Cybersecurity, Fordham University, RBC, Max Life Insurance, Schneider Electric

Related questions

  • 71
What is your recommended automated audit software for internal and external audit?
  • 16
Vulnerability Management and Risk Management Integration
  • 47
What vendor risk management software do you recommend?
  • 37
What is the best solution for comprehensive Risk Management in financial services?
  • 86
What is the difference between SOC 1, SOC 2, and SOC 3 compliance?
  • 15
When evaluating IT Vendor Risk Management, what aspect do you think is the most important to look for?
  • 26
Which enterprise threat modeling tool do you recommend?
  • 36
What is Security Posture and what categories of Security Posture Management do exist?
  • 27
How many ISO norms do we have in the entire ISO27k security family standards?
  • 19
What should an enterprise risk management plan and strategy include in 2022?

Product Categories

Product Categories
IT Vendor Risk Management
Attack Surface Management (ASM)

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Bitsight Logo
CrowdStrike Falcon vs Bitsight
TrendAI Vision One vs Bitsight Logo
TrendAI Vision One vs Bitsight
Cymulate vs Bitsight Logo
Cymulate vs Bitsight
Qualys CyberSecurity Asset Management vs Bitsight Logo
Qualys CyberSecurity Asset Management vs Bitsight
RSA Archer vs Bitsight Logo
RSA Archer vs Bitsight
Axonius vs Bitsight Logo
Axonius vs Bitsight
OneTrust GRC vs Bitsight Logo
OneTrust GRC vs Bitsight
SecurityScorecard vs Bitsight Logo
SecurityScorecard vs Bitsight
AuditBoard vs Bitsight Logo
AuditBoard vs Bitsight
Cybersixgill vs Bitsight Logo
Cybersixgill vs Bitsight
Microsoft Defender External Attack Surface Management vs Bitsight Logo
Microsoft Defender External Attack Surface Management vs Bitsight
ImmuniWeb vs Bitsight Logo
ImmuniWeb vs Bitsight
Cortex Xpanse vs Bitsight Logo
Cortex Xpanse vs Bitsight
IONIX vs Bitsight Logo
IONIX vs Bitsight
ProcessUnity vs Bitsight Logo
ProcessUnity vs Bitsight
See all alternatives
 
Bitsight Reviews Summary
Author infoRatingReview Summary
Senior AIML Engineer at a tech vendor with 1,001-5,000 employees4.5I've used Bitsight for around eight years to detect vulnerabilities in internet-facing systems, appreciating its external scans and continuous monitoring, though I’d like better validation, risk prioritization, and customizable dashboards for broader usability.
Founder at The Cyber Security Network4.0I use Bitsight to identify network vulnerabilities, and its clear reporting, task assignment, and automated scanning are valuable. While helpful overall, I wish it categorized vulnerabilities better and included credential leak detection. I rate it 8/10.
Senior Manager and Global Capability Lead - Offensive Security at a tech vendor with 10,001+ employees3.0I used Bitsight to monitor Virtusa's external security posture, found its ratings and scanning useful, appreciated its vendor oversight and support, but noted issues with accuracy and false positives, ultimately rating it a six out of ten.
Chief Security Officer at Cetelem4.0I use BitSight to monitor security scores for my organization and its subsidiaries. Its most valuable feature is listing vulnerabilities, but the score adaptation could be faster. I previously evaluated SecurityScorecard before choosing BitSight for this purpose.
Telecommunications Engineer at Portugal Telecom4.5Bitsight provides us with comprehensive insights into our security posture, helping to effectively reduce risks. Its user-friendly features allow us to conduct scans and assess security risks. However, the methodology for identifying findings occasionally has errors that need improvement.
VP at FUbon4.5I find BitSight valuable for its diverse evaluation points and ease of use, although its benchmarking could be improved. I prefer it over Black Kite for patch management and am considering SecurityScorecard as an alternative.
SOC at Renault4.0No summary available
Retired at a media company with 1-10 employees4.5I primarily use BitSight for gathering signal intelligence and risk vectors related to a company's attack surface. It offers detailed insights and a user-friendly portal but could improve its anomaly detection to compete better with companies like Qualys.