Estimated Read Time: 8 minutes
Sections in this article:
- Introduction
- Connect a Vendor to Market IQ Cyber
- Remove a Market IQ Connection
- View Market IQ Cyber Data
- Access a Detailed View in SecurityScorecard
- FAQ
- Recommended Reading from SecurityScorecard
- Additional Reading
Introduction
Market IQ Cyber leverages thousands of data points from SecurityScorecard, allowing you to assess vendor cyber security risk continuously and proactively. This module can be used within Gatekeeper for:
- Third-party risk management
- Board reporting
- Cyber insurance underwriting
- Self-monitoring
Connecting vendors to Market IQ Cyber adds an extra layer of insight to your onboarding and due diligence processes. You can:
- Store current and historical cybersecurity grades for vendors
- Add conditional approvals to onboarding or contract workflows, enabling pre-approval for vendors that meet your defined Low Risk threshold
- Automate monitoring for risk escalation and review workflows
To learn more about how SecurityScorecard evaluates vendor risk, open their Scoring Methodology Guide 🔗.
If you would like to have this enabled for your Gatekeeper tenant - or wish to learn more about 
Market IQ Cyber Advanced features - please contact your Customer Success Manager or reach out to our Customer Success Team to discuss upgrading.
Connect a Vendor to Market IQ Cyber
- Open the relevant vendor record.
- Click the Market IQ tab.
- Under Market IQ Cyber, click Connect.
- Enter the vendor's website.
- Click Add domain.
Note:
- When you first perform this action for a vendor, Gatekeeper will automatically add the SecurityScorecard Grade and Score custom fields to your data model. This allows you to get started with capturing and using cyber risk insights.
- Once the module is enabled, populating the Website field on a vendor will automatically connect them to Market IQ Cyber. To connect multiple vendors, you can populate the Website field using a bulk update.
Remove a Market IQ Connection
To remove a vendor linked to Market IQ Cyber, either due to a mismatch or if you no longer wish to track their performance, expand the 3 dots on the Market IQ Cyber section, then select Remove sync with SecurityScorecard.
Note: When a vendor is archived, Gatekeeper automatically removes the Market IQ Cyber connection.
View Market IQ Data in Gatekeeper
Vendor Records: Market IQ Tab
Live Market IQ scores are visible on the Market IQ tab of the vendor record. This will show the Level 1 Data:
- Score: gives you an instant indication of the current cybersecurity risk for the vendor.
- Grade: an easy-to-understand way to rank the summary Score.
|
Grade |
Score |
 |
> 90 |
 |
80 - 89 |
 |
70 - 79 |
 |
60 - 69 |
 |
< 60 |
- Historical Performance: displays a timeline to help assess their long-term reliability.
Repository Level Views - 
Advanced Only
You can also leverage Saved Views to display data from Market IQ Cyber as additional columns within the vendor list view, allowing you to quickly access and export specific data sets, as well as compare information across multiple vendors. To do this:
- From the navigation menu, click Vendors (alternatively, you can do this from the contract repository by clicking Contracts).
- Click the
Configure Columns icon - Expand the Market IQ | Cyber data section, then select the following checkboxes:
- Cyber Score
- Cyber Rating
- Click Save.
- Click Save This View, then enter a Title for this new layout and click Submit.
Vendor Relationship Tables - Advanced Only
If you use the Vendor Relationships feature, connecting Market IQ Cyber allows you to view all cyber risk scores for associated vendors in one place.
Access a Detailed View in SecurityScorecard 
To open the corresponding vendor profile in the SecurityScorecard platform, from the Market IQ tab of a vendor record, expand the 3 dots then select View in SecurityScorecard.
Here, you can click into any of the 10 Score Factors that make up the overall score to learn more about any related incidents or risks:
Create or Access Your SecurityScorecard Account
- Navigate to the SecurityScorecard platform
- Log in using your SecurityScorecard credentials if you already have an account.
- To create a free account, click Create an account and sign up using Google SSO or an email and password.
| Market IQ Cyber is Powered by SecurityScorecard, Inc. |  |
FAQ 💬
Q: What if SecurityScorecard has never scored one of my vendors?
A: While rare (SecurityScorecard's scoring engine monitors over 1.3 million organisations), it can happen.
If no score exists, SecurityScorecard will use the website or domain you provided to run their cybersecurity checks. This process usually takes a few days. Once complete, the score will be automatically updated in the vendor record in Gatekeeper.
Q: What levels of data are available?
A: SecurityScorecard has four levels of data:
Available in Gatekeeper
- Level 1 Data: Top Level Letter Grade (A-F) and Numeric Score (0-100)
Available on the SecurityScorecard platform
- Level 2 Data: Individual Letter (A-F) and Numeric (0-100) Scores for the following 10 Factors: Application Security, Cubit Score, DNS Health, Endpoint Security, Hacker Chatter, IP Reputation, Information Leak, Network Security, Patching Cadence, Social Engineering.
- Level 3 Data: Individual Findings Counts and Issue Summaries, Score Impact, Historical Factor Scores, Historical Findings, Historical Industry Comparison.
- Level 4 Data: Issue Details including Description, Risk, Recommendation, Observations, URLs, Comparison to other companies and more.
Q: What types of domains are taken into account to calculate a score?
A: Issues found in any of the following will be taken into account when scoring the main domain.
- The main domain - e.g. gatekeeperhq.com
- Other TLD (Top Level Domains) for the main domain - e.g. gatekeeperhq.io or gatekeeperhq.co.uk
- Subdomains - e.g. us.gatekeeperhq.com or eu.gatekeeperhq.com
- Related domains - e.g. contractnow.com
Recommended Reading from SecurityScorecard
- A Deep Dive in Scoring Methodology - Discover the meaning and importance of the scores provided by SecurityScorecard.
- How SecurityScorecard calculates your scores- Explains the weightings and calculations which provide the single score/grade from their 10 risk factors.
- What is a third-party breach? - explains their definition of a breach, and how they assess the impact.
- Understand how breaches affect your score - explains how breaches change a vendor score
Note: These materials can be shared with vendors who want to know more about how their score is affected after a breach.
Additional Reading 📚
- Using Market IQ Cyber in Workflows - Learn how to embed the risk data provided by SecurityScorecard in your vendor management workflows, improving your risk assessments and ongoing risk monitoring.
- Market IQ Financial | Integrated Market and Risk Surveillance Feeds - Learn how to leverage Market IQ Financial, providing you with integrated credit and risk profiling from Creditsafe directly in your Gatekeeper vendor repository.
- 🛠 Create your own - Market IQ Monitoring Workflow - Learn how to configure our Best Practice Template for the autonomous monitoring of your vendor's cybersecurity ratings.