Skip to main content
The Risk Assessment page provides a comprehensive, AI-generated evaluation of a vendor’s security and compliance posture. For automated vendors, this assessment is generated entirely by AI based on domain and IP scanning.

Assessment overview

At the top, you will see the overall security rating, total risk findings, and a summary of data sources:

Domains

Number of domains scanned for this vendor.

IP Addresses

Number of IP addresses analyzed.

Total Risks

Total number of risk findings identified.

AI-powered assessment sections

The detailed assessment covers:
  • General Findings — overall security observations
  • Security Policies & Processes — organizational security governance
  • Asset Management — how the vendor tracks and protects assets
  • Infrastructure Management — cloud and on-premise security
  • Application Security — secure development practices
  • Data Protection — encryption, access controls, data handling
  • Risk Management — the vendor’s own risk management practices
  • Operational Resilience — business continuity and disaster recovery
  • Conclusion — overall assessment summary with recommendations

Manual vs. automated assessments

For automated vendors, the AI completes the entire assessment based on scanned data. For manual vendors, you must complete the assessment yourself, entering findings and scoring for each category.
Click the Refresh button to trigger a new AI scan with the latest data. Assessment refreshes use the most current domain and IP information available.