AI TOOL PROFILE
CyberRank: Vendor Security and Privacy Ratings
- Security
- Compliance Management
- Small and medium-sized businesses
- Enterprise companies
- Procurement teams
- Compliance managers
Pricing
CyberRank uses a credit-based system. One-time assessments cost CR 20 per company, continuous monitoring is CR 30 per vendor per month, and API access is CR 500 per month.
At a glance
- Best for
- Small and medium-sized businesses, Enterprise companies, Procurement teams, Compliance managers
- Key use cases
- Pre-contract Due Diligence, Investment and Insurance Assessment, Vendor Benchmarking, Internal Posture Review
- Official website
- Visit CyberRank official website

How AI is used
CyberRank is a vendor risk management tool that uses AI to scan a company's digital footprint and provide a security and privacy rating. It analyzes publicly available data, including security configurations, privacy policies, and breach databases, to assign a rating from AAA (Excellent) to D (Very Poor) based on the IISRI methodology.
The tool is designed for organizations conducting due diligence on third-party vendors, evaluating potential investments, or benchmarking security posture. Because it uses public data, it provides an external view of a vendor's risk level.
Buyers should note that this tool provides an external assessment. For a deeper analysis, the provider offers a separate internal audit service (IISRI Internal) that requires direct access to company systems.
Practical functionality includes vulnerability scanning, compliance framework detection, and continuous monitoring to notify users if a vendor's security posture changes.
Key Features
Privacy Policy Analysis
Evaluates the structure, clarity, and completeness of privacy policies and cookie consent banners across 15+ key areas.
AI Vulnerability Scanning
Scans main domains and subdomains for security vulnerabilities and prioritizes them by severity.
Compliance Framework Detection
Identifies certifications and frameworks such as SOC 2, ISO 27001, PCI DSS, and HIPAA.
Credential and Breach Detection
Monitors global breach databases and the dark web for leaked credentials and historical data breaches.
Continuous Monitoring
Supports daily re-assessments of vendors with email notifications when rating changes occur.
REST API Access
Provides programmatic access to ratings and data for use in internal procurement workflows.
Use Cases
Pre-contract Due Diligence
Checking the security and privacy posture of a new vendor before signing a legal agreement.
Investment and Insurance Assessment
Evaluating cybersecurity risks associated with a company before an investment or insurance decision.
Vendor Benchmarking
Comparing security ratings of multiple vendors to identify secure options in a specific category.
Internal Posture Review
Running a self-assessment to identify external vulnerabilities and improve a company's own IISRI rating.
FAQ
How does CyberRank assess vendors without internal access?
- CyberRank uses AI to analyze publicly available data, including security configurations, privacy policies, and global breach databases.
What is the IISRI rating scale?
- The IISRI scale ranges from AAA (Excellent) to D (Very Poor), reflecting the overall security and privacy risk level of an organization.
Is there a subscription required for CyberRank?
- The platform offers a credit-based system, allowing users to pay for assessments on a per-company or per-month basis for monitoring.
Source category: Security
Source subcategory: Compliance Management
More tools in Security
Other published listings in the Security category.
More tools in the Compliance Management software type
Related listings that share the same software type for comparison and shortlisting.
