What is Black Kite?

Black Kite is the only Cyber Risk Rating Platform focused on alerting your business to third party risks.

Uncover Your Ransomware Susceptibility

Understand which vendors are most prone to ransomware with a tool that calculates event susceptibility within minutes. Avoid production, reputation and financial losses by using reliable data to develop more informed policies.

Quantify Cyber Riskwith OpenFAIR™

For the first time, CISOs, CROs, and CFOs have an automated tool to estimate the cost of a cyber breach — communicating risks in quantitative, easy-to-understand business terms.

Unmatched Scalability

Black Kite’s platform is built on the latest Cloud technology to automate scalability, reducing assessment times from weeks to hours. If a company has a web presence, they’re already present in our database.

trusted by

What Our Clients Are Saying

Radically Simple Cyber Assessments That Prevent Unrecognized Risk

Easy To Access SAAS System

that integrates with questionnaires, vendor management systems and process workflows.

Automated Compliance Mapping

with 14 of the leading control sets that correlate cyber risk findings to industry standards and best practices.

Cost Effective

to ensure you’re alerted to third party risks despite limited budgets and resources.

The Black Kite Platform

Built from a Hacker’s Perspective

Financial

technical

COMPLIANCE

Risk in Financial Terms

Determines the financial impact of potential breaches for each vendor

Learn More

Technical Cyber Risk Score

Continuously monitors third-party risks and assigns an easy-to-understand letter grade to each vendor

Learn More

Questionnaire & Compliance Correlation

Correlates findings with industry standards to inform compliance requirements

Learn More

Black Kite’s platform was built to provide full visibility into a vendor’s cyber position, using the same open-source intelligence tools and techniques hackers use (data collectors, crawlers, honeypots, etc.) to continuously collect information from internet-wide scanner databases, reputation sites, cyber events, hacker shares, and known vulnerability databases.