You can use cybersecurity risk ratings (CRR) platforms to augment third-party risk management (TPRM) programs, continually monitor your organization’s external attack surface, and provide easy-to-understand scores to nontechnical audiences. But to realize these benefits, you’ll first have to select from a diverse set of vendors that vary by size, type of offering, geography, and use case differentiation. Security and risk professionals should use this report to understand the value they can expect from a CRR platform vendor, learn how vendors differ, and investigate options based on size and market focus.