Drop a domain, walk away, come back to a live scorecard and an AI-authored assessment already on its way to the vendor. Continuous monitoring is included — not a second contract.
Every capability shares one data model and one tamper-evident audit trail with the rest of the platform.
Outside-in scoring every day. We own the scoring stack — no licensed third-party data, no separate invoice.
AI-authored questionnaires from a one-line description, 100% auto-scored, framework-mapped.
Ingest SBOMs in CycloneDX/SPDX; continuous CVE matching routes findings to ServiceNow or Jira.
Drop a vendor's SOC 2 PDF; auditor, period, every TSC, every CUEC and exception extracted.
Branded responder portal auto-reminds vendors; you're notified on submission.
250–900 rating, A–F grade, risk-vector breakdown — for any vendor, no questionnaire required.
Most TPRM platforms stop at the questionnaire — then you go buy scorecards somewhere else. Verisq doesn't. Because we own LiveThreat, continuous external monitoring is part of the platform: every vendor, every day, no second contract.
The Vendor Risk Hub is one of five purpose-built workspaces sharing a single data model and audit trail. Start with SOC 2, expand across the platform.