We performed a comparison between Bitsight Third-Party Risk Management and OneTrust GRC based on real PeerSpot user reviews.
Find out in this report how the two IT Vendor Risk Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Offers open ports from an external point of view."
"I prefer BitSight due to its patch management capabilities. The score is a valuable feature. I have contacted the customer support through e-mail and their response rate is fast. I rate the solution a nine out of ten."
"The product helps us identify the vulnerabilities of internet-facing applications."
"Its customer service team responds quickly."
"The solution is user-friendly."
"As a solution for IT risks, it is a very good product."
"We receive notifications or cases and prioritize them accordingly, which helps us address issues promptly."
"We have data from Jira regarding addiction related to Europe as well as California. Additionally, we have data related to the Indian Data Protection Bill. Therefore, GDPR compliance is highly beneficial."
"OneTrust GRC is stable."
"One of the valuable features of this solution is it has the ability to review fourth and fifth parties to the nth degree."
"The product helps us streamline audit and incident management processes."
"It does help in the automation of our privacy impact assessments."
"OneTrust GRC offers policy management, including documentation, distribution, attestation, and policy management."
"There may be room for improvement in the methodology for identifying findings, as occasional errors occur on the technical side."
"The solution’s benchmarking should be improved."
"At the moment, when the vulnerability score decreases, it remains the same for quite a while, even though issues are resolved in 24 hours."
"Data enrichment is the major issue."
"Its factor analysis feature could be better."
"They could improve by offering free help. A solution, a lot of times, is not just the use of the solution. For example, it is the overall engagement, how well do they support the system, what is their SLA, and how long their response time is to an issue. It would be beneficial if they had some type of professional services where they offer the first five hours of professional services a year for free. That would be a substantial benefit rather than having to buy professional services or professional services packages."
"OneTrust GRC's workflows aren't automated and need to be manually driven."
"We encounter difficulties creating multiple platforms or interfaces and manual processes for changing certain settings."
"The product is not that easy to set up."
"I haven't seen any return on investment using the solution. If I had the opportunity, I would use a different solution."
"The Vendor Risk dashboard is quite basic today and not interactive, but improvements are in coming the next releases."
"There are limitations to customized workflow automation, and they need to increase both the available automation and the customized workflow."
"There are several areas for improvement. One is the integration capability. Connecting various DSAR systems can be time-consuming if a single integration takes months to complete."
More Bitsight Third-Party Risk Management Pricing and Cost Advice →
Bitsight Third-Party Risk Management is ranked 3rd in IT Vendor Risk Management with 5 reviews while OneTrust GRC is ranked 2nd in IT Vendor Risk Management with 9 reviews. Bitsight Third-Party Risk Management is rated 8.6, while OneTrust GRC is rated 8.0. The top reviewer of Bitsight Third-Party Risk Management writes "User-friendly solution with robust patch management capabilities". On the other hand, the top reviewer of OneTrust GRC writes "Effective privacy management, but the technical support could improve, and it is difficult to implement". Bitsight Third-Party Risk Management is most compared with SecurityScorecard, RiskRecon, Microsoft Secure Score, Tenable Lumin and Panorays, whereas OneTrust GRC is most compared with RSA Archer, ProcessUnity, AuditBoard, Workiva Wdesk and NAVEX One. See our Bitsight Third-Party Risk Management vs. OneTrust GRC report.
See our list of best IT Vendor Risk Management vendors.
We monitor all IT Vendor Risk Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.