Request for Information re: your SecurityScorecard Rating - Adobe

Good morning Adobe,

As part of our annual third-party vendor risk assessment process, we are reviewing external security ratings using SecurityScorecard as an initial benchmark.

Your organization’s current score appears lower than expected, and we would appreciate your assistance in understanding the contributing factors.  Specifically, we are interested in any known issues impacting your rating; as well as, any remediation efforts or improvement plans currently underway.

SecurityScorecard is a cybersecurity ratings and third-party risk platform that helps organizations evaluate their own security posture and monitor the risk of vendors and other external partners.

It gives companies a security “score” based on observable security factors, then uses that information to support vendor risk management, supply-chain monitoring, and remediation efforts.  It’s commonly used by security, compliance, and procurement teams that need a fast way to understand cyber risk across many organizations.

For example, companies might use SecurityScorecard to continuously monitor a critical supplier and get alerted if that supplier’s security posture drops.

If available, please feel free to share additional context, documentation, or timelines related to ongoing security enhancements.

Thank you in advance for your cooperation.