No more typing reviews! Try our Samantha, our new voice AI agent.
Bitsight Logo

Bitsight pros and cons

Vendor: BitSight
4.1 out of 5
Badge Leader
Leave a review

Pros & Cons summary

Bitsight is essential for external attack surface monitoring, boosting security and customer trust through continuous oversight. It provides insights into external servers, botnet infections, credential leaks, and open ports but faces challenges with data discrepancies and false positives. Notable for its swift customer support, Bitsight improves vendor benchmarking, offering extensive cyber visibility across vendors. However, data enrichment issues and factor analysis limitations need addressing, especially when increased findings lower risk scores.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

Bitsight is highly recommended for external attack surface monitoring, offering an improvement in security and customer trust with continuous monitoring.
Bitsight provides valuable information about external servers, botnet infections, credential leaks, and open ports, preventing adversary misuse.
The swift response of Bitsight's customer support team is a notable advantage.
Bitsight identifies vulnerabilities in internet-facing applications and provides comprehensive risk vector insights covering compromised systems and diligence failures.
Bitsight significantly enhances vendor benchmarking and provides extensive cyber visibility across hundreds of vendors.

CONS

If the number of findings increases for a given month, the overall risk score decreases, posing a challenge for the team addressing the issue.
Data enrichment is identified as a significant issue.
There are discrepancies in the data provided by Bitsight.
The factor analysis feature could be improved.
Some findings are false positives, affecting the rating until rectified.
 

Bitsight Pros review quotes

SA
Suresh A.
Senior AIML Engineer at a tech vendor with 1,001-5,000 employees
Dec 10, 2025
Bitsight has positively impacted my organization by improving security and customer trust, giving us continuous monitoring so we now find misconfigurations within hours instead of days or weeks, which directly improves our overall security posture and reduces risk as we catch high-risk exposures early, especially unexpected cloud assets or testing endpoints that accidentally went public.
Read full review
TarunKumar11 - PeerSpot reviewer
TarunKumar11
Member Of Leadership Advisory Council at a tech company with 10,001+ employees
Jun 2, 2026
Bitsight has positively impacted the organization by helping with vendor benchmarking and providing outside-in cyber visibility across hundreds of vendors, which is the biggest plus.
Read full review
Aditya Vikram Raj - PeerSpot reviewer
Aditya Vikram Raj
Associate at a financial services firm with 10,001+ employees
Apr 4, 2026
If you are exactly looking for external attack surface monitoring, and you are exploring options, then Bitsight is a very good option that you can explore.
Read full review
Buyer's Guide
Bitsight
June 2026
Free Report: Bitsight Reviews and More
Learn what your peers think about Bitsight. Get advice and tips from experienced pros sharing their opinions. Updated: June 2026.
DOWNLOAD NOW
899,052 professionals have used our research since 2012.
Tarang Parmar - PeerSpot reviewer
Tarang Parmar
Founder at The Cyber Security Network
Dec 9, 2025
My advice to others looking into using Bitsight is that it provides a lot of information that was not available before, and it is especially good in recon as it can identify many things about an organization that have never been found earlier, making it a valuable tool.
Read full review
reviewer2774376 - PeerSpot reviewer
reviewer2774376
Senior Manager and Global Capability Lead - Offensive Security at a tech vendor with 10,001+ employees
Nov 3, 2025
Bitsight gives me a holistic view of my entire security posture, which is something any organization would want to have after getting a tool such as Bitsight.
Read full review
Marc Chapel - PeerSpot reviewer
Marc Chapel
Chief Security Officer at Cetelem
Sep 14, 2023
The product helps us identify the vulnerabilities of internet-facing applications.
Read full review
Alfredo Alvim - PeerSpot reviewer
Alfredo Alvim
Telecommunications Engineer at Portugal Telecom
Jan 23, 2024
The solution is user-friendly.
Read full review
JS
Julian Shen
VP at FUbon
Dec 26, 2023
I prefer BitSight due to its patch management capabilities. The score is a valuable feature. I have contacted the customer support through e-mail and their response rate is fast. I rate the solution a nine out of ten.
Read full review
AV
Ajai Victoria
SOC at Renault
Aug 16, 2022
Offers open ports from an external point of view.
Read full review
reviewer2563074 - PeerSpot reviewer
reviewer2563074
Retired at a media company with 1-10 employees
Oct 16, 2024
The best thing about BitSight is the comprehensive list of risk vectors, covering compromised systems, diligence failures, and behavioral anomalies.
Read full review
Show 1 more reviews (out of 11)
 

Bitsight Cons review quotes

SA
Suresh A.
Senior AIML Engineer at a tech vendor with 1,001-5,000 employees
Dec 10, 2025
There are areas for improvement; we do notice sometimes finding vulnerabilities which gives us visibility to find them quickly. However, there could be a mechanism they can build on top of that for validation as they identify the issues.
Read full review
TarunKumar11 - PeerSpot reviewer
TarunKumar11
Member Of Leadership Advisory Council at a tech company with 10,001+ employees
Jun 2, 2026
I would rate Bitsight closer to nine, or somewhere between eight and nine, because the reasons I do not rate it a ten relate to opportunities for improvement I mentioned, such as broader risk, cyber risk intelligence, and emphasis on supply chain risk intelligence.
Read full review
Aditya Vikram Raj - PeerSpot reviewer
Aditya Vikram Raj
Associate at a financial services firm with 10,001+ employees
Apr 4, 2026
Since if the number of findings increases for a particular month, your overall risk score decreases, which can become a challenge for a team working on this particular issue.
Read full review
Buyer's Guide
Bitsight
June 2026
Free Report: Bitsight Reviews and More
Learn what your peers think about Bitsight. Get advice and tips from experienced pros sharing their opinions. Updated: June 2026.
DOWNLOAD NOW
899,052 professionals have used our research since 2012.
Tarang Parmar - PeerSpot reviewer
Tarang Parmar
Founder at The Cyber Security Network
Dec 9, 2025
I chose 8 out of 10 because if we receive invites from clients every 45 days, our subscription ends, and we have to renew it.
Read full review
reviewer2774376 - PeerSpot reviewer
reviewer2774376
Senior Manager and Global Capability Lead - Offensive Security at a tech vendor with 10,001+ employees
Nov 3, 2025
We found that some of the findings are clear false positives, but they still report that, and based on that, the rating goes down until we rectify them.
Read full review
Marc Chapel - PeerSpot reviewer
Marc Chapel
Chief Security Officer at Cetelem
Sep 14, 2023
At the moment, when the vulnerability score decreases, it remains the same for quite a while, even though issues are resolved in 24 hours.
Read full review
Alfredo Alvim - PeerSpot reviewer
Alfredo Alvim
Telecommunications Engineer at Portugal Telecom
Jan 23, 2024
There may be room for improvement in the methodology for identifying findings, as occasional errors occur on the technical side.
Read full review
JS
Julian Shen
VP at FUbon
Dec 26, 2023
The solution’s benchmarking should be improved.
Read full review
AV
Ajai Victoria
SOC at Renault
Aug 16, 2022
Data enrichment is the major issue.
Read full review
reviewer2563074 - PeerSpot reviewer
reviewer2563074
Retired at a media company with 1-10 employees
Oct 16, 2024
BitSight could improve the classes and lower-level detections of anomalies that compound the information used to compute the rating.
Read full review
Show 1 more reviews (out of 11)

Product Categories

Product Categories
IT Vendor Risk Management
Attack Surface Management (ASM)

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Bitsight Logo
CrowdStrike Falcon vs Bitsight
TrendAI Vision One vs Bitsight Logo
TrendAI Vision One vs Bitsight
Qualys CyberSecurity Asset Management vs Bitsight Logo
Qualys CyberSecurity Asset Management vs Bitsight
HackerOne vs Bitsight Logo
HackerOne vs Bitsight
RSA Archer vs Bitsight Logo
RSA Archer vs Bitsight
Cymulate vs Bitsight Logo
Cymulate vs Bitsight
Axonius vs Bitsight Logo
Axonius vs Bitsight
OneTrust GRC vs Bitsight Logo
OneTrust GRC vs Bitsight
Amazon Inspector vs Bitsight Logo
Amazon Inspector vs Bitsight
Mandiant Advantage vs Bitsight Logo
Mandiant Advantage vs Bitsight
Cybersixgill vs Bitsight Logo
Cybersixgill vs Bitsight
AuditBoard vs Bitsight Logo
AuditBoard vs Bitsight
SecurityScorecard vs Bitsight Logo
SecurityScorecard vs Bitsight
SOCRadar Extended Threat Intelligence vs Bitsight Logo
SOCRadar Extended Threat Intelligence vs Bitsight
Microsoft Defender External Attack Surface Management vs Bitsight Logo
Microsoft Defender External Attack Surface Management vs Bitsight
See all alternatives

Product Categories

Product Categories
IT Vendor Risk Management
Attack Surface Management (ASM)

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Bitsight Logo
CrowdStrike Falcon vs Bitsight
TrendAI Vision One vs Bitsight Logo
TrendAI Vision One vs Bitsight
Qualys CyberSecurity Asset Management vs Bitsight Logo
Qualys CyberSecurity Asset Management vs Bitsight
HackerOne vs Bitsight Logo
HackerOne vs Bitsight
RSA Archer vs Bitsight Logo
RSA Archer vs Bitsight
Cymulate vs Bitsight Logo
Cymulate vs Bitsight
Axonius vs Bitsight Logo
Axonius vs Bitsight
OneTrust GRC vs Bitsight Logo
OneTrust GRC vs Bitsight
Amazon Inspector vs Bitsight Logo
Amazon Inspector vs Bitsight
Mandiant Advantage vs Bitsight Logo
Mandiant Advantage vs Bitsight
Cybersixgill vs Bitsight Logo
Cybersixgill vs Bitsight
AuditBoard vs Bitsight Logo
AuditBoard vs Bitsight
SecurityScorecard vs Bitsight Logo
SecurityScorecard vs Bitsight
SOCRadar Extended Threat Intelligence vs Bitsight Logo
SOCRadar Extended Threat Intelligence vs Bitsight
Microsoft Defender External Attack Surface Management vs Bitsight Logo
Microsoft Defender External Attack Surface Management vs Bitsight
See all alternatives
Related questions
  • 159
What is your recommended automated audit software for internal and external audit?
  • 187
What is the difference between SOC 1, SOC 2, and SOC 3 compliance?
  • 51
Vulnerability Management and Risk Management Integration
  • 69
What vendor risk management software do you recommend?
  • 127
What is the best solution for comprehensive Risk Management in financial services?
  • 32
When evaluating IT Vendor Risk Management, what aspect do you think is the most important to look for?
  • 81
Which enterprise threat modeling tool do you recommend?
  • 123
What is Security Posture and what categories of Security Posture Management do exist?
  • 92
How many ISO norms do we have in the entire ISO27k security family standards?
  • 52
What should an enterprise risk management plan and strategy include in 2022?