The FICO Data Privacy Policy explains FICO’s collection and use of cookies. Cookies help us remember your settings to provide you with a better browsing experience; allow us to assess, monitor, and improve the website’s performance; and enable our partners to advertise to you. You may disable the cookies by changing the settings in your browser, and you may tell us not to share your cookie data with third parties. By using this website, you consent to the use of cookies as described in the FICO Data Privacy Policy.
Log InSign Up
The FICO Cyber Risk Score is the most accurate cyber risk signal that you can leverage into your risk management programs. This three-digit score distills a broad range of raw data signals in an easy to use metric. The score is delivered via a suite of applications (Enterprise Security Suite) which are tailored to various use cases including self assessment, vendor management, as well as cyber insurance underwriting. While Enterprise Security Suite - Portrait (Basic and Premium) is best suited for use for self-assessment while Enterprise Security Suite – Landscape is ideal for third-party cyber risk management, both for vendors or cyber insurance policies.
Machine Learning models trained on historical data
Customizable asset definitions to refine the scope
Workflow integrations for a variety of use cases to facilitate decisions
FICO Cyber Risk Score
Access to the most accurate cyber risk metric available
Self-service asset curation for imporved accuracy
Score trending/benchmarking
Data categorization for score imporvement
Data and Reporting
PDF reports
Ongoing weekly data updates
IP address level signal details
View and track timestamped notes on any IP level data signal
External API integrations
Data download to excel via csv
Third Party Risk Assessment
External and objective measure third-party cyber risk
Benchmark security preformance across segments of partners
Breach insurance underwriting workflow features
Vendor management workflow features
portfolio management
Information sharing with vendors/policy holders
Risk aggregation data and modeling
Financial loss scenario modeling
Portrait Portal
5X more accurate than competitors published results.
Free access to the security rating used by cyber insurers.
Self-service asset curation improves accuracy.
Ability to monitor your security score improvement over time.
No need for tedious ombudsmen processes.
Clearly convey security performance results to executive leadership.
Landscape Portal
Benchmark security performance across segments of partners.
Support breach insurance underwriting.
Understand portfolio risk across all insurance policies.
Monitor the risk of your existing partner portfolio.
Help CROs and CPOs tackle active vendor management.
Vet the risk of potential partners.
Cyber-Insurance
The FICO® Cyber Risk Score supports cybersecurity risk assessments and underwriting decisions. It accurately captures the risk posture of an organization as observed from an external vantage point. This quantifiable security rating is used to price insurance policies and determine exclusions or riders.
Vendor Risk
Manage and monitor the cybersecurity risk introduced by your vendors. The FICO® Cyber Risk Score presents aggregated data and measurements that capture the cybersecurity risk of your vendors via a diverse set of measurements. Linked tools within the Landscape portal of the FICO® Enterprise Security Suite allows a conversation with your vendors regarding the reported data.
Self Assessment
The FICO Cyber Risk Score can be used to implement a cyber risk self-assessment program that utilizes the score and the underlying data in a continuous monitoring context as the basis of the self-assessment. The results can then be presented to the C-Suite as part of an ongoing reporting function.
As the frequency and severity of cyber breaches continue to grow, cybercrime is now one of the biggest challenges facing financial institutions (FIs). Adding to their problems, FIs must also address the growing risk of technology outages– ...
Cybersecurity strategies often consist of “whack-a-mole” exercises focused on the perpetual detection and mitigation of vulnerabilities. As a result, organizations must re-think the ever-escalating costs associated with vulnerability manag...
Security rating services hold the potential to significantly alter the methods that organizations use to assess and monitor their data breach exposure. In addition to self-assessment, these methods are increasingly being used to monitor th...
Cybersecurity is a complex domain requiring specialized skill sets and subject matter expertise. Justifiably, organizations support this expertise with significant technology investments aimed at securing their networks and protecting the sensitive data under their care. The scope of these investments requires an ability to communicate a comprehensible result. Organizations need a standardized, trustworthy benchmark through which they can understand and communicate their resulting security posture.