AI TOOL PROFILE

UpGuard: Cyber Risk Posture Management Software

UpGuard helps mid-market and enterprise companies manage third-party cyber risk. It is designed for organizations in regulated sectors, such as healthcare and finance, that need to maintain compliance standards.

Pricing

The Standard plan is $1,750 per month, billed annually, for 50 vendors, with additional vendors at $79/month. Professional, Corporate, and Enterprise tiers require contacting sales for pricing.

At a glance

Best for
Mid-market companies, Enterprise companies, Financial services firms, Healthcare providers, Technology companies
Key use cases
Third-Party Risk Assessments, Regulatory Compliance Support, Attack Surface Monitoring, Supply Chain Visibility
Integrations
Jira, Slack, ServiceNow, Zapier, Microsoft Teams
Visit upguardupguard software interface screenshot

How AI is used

UpGuard is a Cyber Risk Posture Management (CRPM) platform designed to unify how businesses track security risks across their vendor supply chain, internal attack surface, and workforce. The platform supports a shift from manual spreadsheets toward automated monitoring and assessment.

The software is designed for security teams in mid-market and enterprise environments, particularly those in the technology, healthcare, and financial services industries. It helps these teams identify vulnerabilities in third-party dependencies and monitor their own digital footprint for potential breaches.

Capabilities include automated security questionnaires and security ratings, which may help teams prioritize remediation efforts. The platform supports alignment with standards such as SOC 2, ISO 27001, and HIPAA.

Buyers should confirm vendor volume limits when choosing a plan, as the number of monitored vendors varies between the Standard, Professional, Corporate, and Enterprise tiers.

Key Features

  • Continuous Vendor Monitoring

    Scans external vendors for security changes and rating drops to provide risk insights.

  • Security Questionnaire Automation

    Uses AI to support the discovery and parsing of security questionnaire responses.

  • Attack Surface Management

    Monitors the organization's own digital footprint to detect vulnerabilities and data leaks.

  • Human Risk Management

    Unifies identity and behavior signals to monitor and secure the internal workforce.

  • Trust Exchange

    A system for managing security questionnaires and maintaining a Trust Center.

  • Risk Automations

    Connects risk data to APIs to support the discovery and notification of risks across systems.

Use Cases

  • Third-Party Risk Assessments

    Using automated questionnaires and security ratings to evaluate the risk level of vendors.

  • Regulatory Compliance Support

    Aligning vendor risk programs with frameworks like HIPAA, ISO 27001, and NIST.

  • Attack Surface Monitoring

    Scanning for leaked credentials and misconfigurations to help protect patient or customer data.

  • Supply Chain Visibility

    Identifying fourth-party dependencies to help manage concentration risk in the extended supply chain.

Integrations

  • Jira
  • Slack
  • ServiceNow
  • Zapier
  • Microsoft Teams
  • Google Sheets
  • Trello

FAQ

What is UpGuard used for?

UpGuard is used to monitor the security posture of third-party vendors, manage an organization's own attack surface, and automate security questionnaires.

How much does UpGuard cost?

The Standard plan is $1,750 per month, billed annually, for 50 vendors. Pricing for higher tiers requires contacting their sales team.

Does UpGuard support compliance frameworks?

Yes, UpGuard is SOC 2 Type II compliant and supports alignment with ISO 27001, HIPAA, NIST, DORA, and APRA CPS 230.

Who is UpGuard best suited for?

It is designed for mid-market and enterprise companies, particularly those in healthcare, finance, and technology.

Source category: Security

Source subcategory: Vendor Risk Management

More tools in Security

Other published listings in the Security category.

Browse all tools in Security

More tools in the Vendor Risk Management software type

Related listings that share the same software type for comparison and shortlisting.

Browse all Vendor Risk Management software type tools