UpGuard: Cyber Risk Posture Management Software
UpGuard helps mid-market and enterprise companies manage third-party cyber risk. It is designed for organizations in regulated sectors, such as healthcare and finance, that need to maintain compliance standards.
At a glance
- Category
- Security
- Best for
- Mid-market companies, Enterprise companies, Financial services firms, Healthcare providers, Technology companies
- Pricing
- The Standard plan is $1,750 per month, billed annually, for 50 vendors, with additional vendors at $79/month. Professional, Corporate, and Enterprise tiers require contacting sales for pricing.
- Key use cases
- Third-Party Risk Assessments, Regulatory Compliance Support, Attack Surface Monitoring, Supply Chain Visibility
- Integrations
- Jira, Slack, ServiceNow, Zapier, Microsoft Teams
- Official website
- upguard.com
UpGuard is a Cyber Risk Posture Management (CRPM) platform designed to unify how businesses track security risks across their vendor supply chain, internal attack surface, and workforce. The platform supports a shift from manual spreadsheets toward automated monitoring and assessment.
The software is designed for security teams in mid-market and enterprise environments, particularly those in the technology, healthcare, and financial services industries. It helps these teams identify vulnerabilities in third-party dependencies and monitor their own digital footprint for potential breaches.
Capabilities include automated security questionnaires and security ratings, which may help teams prioritize remediation efforts. The platform supports alignment with standards such as SOC 2, ISO 27001, and HIPAA.
Buyers should confirm vendor volume limits when choosing a plan, as the number of monitored vendors varies between the Standard, Professional, Corporate, and Enterprise tiers.
Key Features
Scans external vendors for security changes and rating drops to provide risk insights.
Uses AI to support the discovery and parsing of security questionnaire responses.
Monitors the organization's own digital footprint to detect vulnerabilities and data leaks.
Unifies identity and behavior signals to monitor and secure the internal workforce.
A system for managing security questionnaires and maintaining a Trust Center.
Connects risk data to APIs to support the discovery and notification of risks across systems.
Use Cases
Using automated questionnaires and security ratings to evaluate the risk level of vendors.
Aligning vendor risk programs with frameworks like HIPAA, ISO 27001, and NIST.
Scanning for leaked credentials and misconfigurations to help protect patient or customer data.
Identifying fourth-party dependencies to help manage concentration risk in the extended supply chain.
Best For
Integrations
Pricing
The Standard plan is $1,750 per month, billed annually, for 50 vendors, with additional vendors at $79/month. Professional, Corporate, and Enterprise tiers require contacting sales for pricing.
FAQ
UpGuard is used to monitor the security posture of third-party vendors, manage an organization's own attack surface, and automate security questionnaires.
The Standard plan is $1,750 per month, billed annually, for 50 vendors. Pricing for higher tiers requires contacting their sales team.
Yes, UpGuard is SOC 2 Type II compliant and supports alignment with ISO 27001, HIPAA, NIST, DORA, and APRA CPS 230.
It is designed for mid-market and enterprise companies, particularly those in healthcare, finance, and technology.
Source category: Security
Source subcategory: Vendor Risk Management
