Risk Ledger Reviews & Product Details

Risk Ledger has significantly transformed how we handle customer security assessments, making a previously time-consuming process remarkably efficient. By providing a single, continuously updated security profile, it eliminates the repetitive burden of completing unique questionnaires for every client. This not only drastically saves time and resources but also accelerates sales cycles by enabling immediate and consistent sharing of our security posture. Ultimately, Risk Ledger empowers us to demonstrate a mature and transparent approach to security, fostering greater trust and confidence with our valued customers. Review collected by and hosted on G2.com.

While Risk Ledger excels in streamlining supplier assessments, its effectiveness hinges on supplier cooperation in maintaining their profiles. Furthermore, as the core data is self-assessed, organizations still need to consider additional due diligence for critical vendors to ensure complete assurance. Review collected by and hosted on G2.com.

Instead of every company sending long questionnaires back and forth, suppliers create a single, reusable security profile that all their clients can view.

This dramatically reduces friction, speeds up due-diligence, and makes the whole ecosystem more efficient. Review collected by and hosted on G2.com.

We have no complaints about Risk Ledger; there is nothing we dislike about it. Review collected by and hosted on G2.com.

Risk Ledger provides a simple, centralized way to manage third-party cyber risk. I like that suppliers can share security information once, reducing duplicate assessments and improving transparency across the supply chain. Review collected by and hosted on G2.com.

Some aspects of the platform can feel time-consuming to set up initially, and the user interface occasionally feels less intuitive, making navigation slower for new users. Review collected by and hosted on G2.com.

Risk Ledger has become an essential tool in our third-party due diligence process. It simplifies supplier onboarding and risk assessment by providing a centralised platform where vendors can maintain and share their security profiles. This has drastically reduced the time we spend chasing documentation and manually reviewing spreadsheets.

The platform’s Standardised Assessment Framework (SAF) is particularly valuable—it allows suppliers to complete a single, comprehensive profile that can be reused across multiple clients. This not only speeds up our due diligence but also improves consistency and transparency in how we assess risk.

We also appreciate the ability to monitor changes in supplier risk posture over time, with alerts and updates that help us stay ahead of potential issues. The collaborative features make it easy to engage suppliers directly and request clarifications or additional evidence when needed.

Centralised supplier risk profiles

Efficient onboarding and assessment workflows

Real-time updates and alerts

Excellent support and onboarding assistance

Reduces manual effort and improves audit readiness Review collected by and hosted on G2.com.

Some suppliers may need guidance during initial setup Review collected by and hosted on G2.com.

I find the support team at Risk Ledger to be very helpful when it comes to push backs from suppliers we are trying to connect with. In particular, Emma D & Daniel P have been very helpful in this regard and helped Flagstone get more than 50% of our suppliers on Risk Ledger within a month.

I find it quite an easy platform to use and navigate through. In particular, the ability to open risks for suppliers is quite useful. As well as the ability to categorise suppliers and assign owners. Review collected by and hosted on G2.com.

It would be better to change the process of how to invite suppliers to Risk Ledger. Perhaps a bulk invite for those suppliers that are currently not on Risk Ledger would be helpful. Review collected by and hosted on G2.com.

Risk Ledger is a fully comprehensive, engaging platform that transforms manual risk assessment work into a continuous automated TPRM solution. It engages key suppliers with updated questions where significant supplier attacks have occurred, as well as maintaining automated communications with suppliers to ensure responses remain updated. Allowing me to cross-examine any particular controls or responses if they appear to fail expectation. Review collected by and hosted on G2.com.

It can be a complex beast to use. However, their customer support team has a continuous engagement model in place ensuring training, support and assistance in any area is not only made available, but as diarised meetings every month. Review collected by and hosted on G2.com.

The onboarding process is extremely straightforward and guides you step by step through completing your assessment. This quickly allows you to build your security profile, which can then be shared securely with your customers and suppliers. This ensures that they can determine your risk to them and, in turn, you can view their security standing. Review collected by and hosted on G2.com.

If you don't have an existing assessment that you can upload it takes about 3-4 hours to complete the profile, this is a lot of time to spend and it would be nice if the process was maybe split into several "challenges" that when completed over a week or so build the complete profile without feeling like you spent so much time on it. Review collected by and hosted on G2.com.

Risk Ledger has helped us move away from time-consuming, manual risk assessments and supplier due diligence. We recently onboarded with Risk Ledger and we're already seeing the benefits.

The onboarding experience has been first class. Regular one-to-one sessions with our Account Manager has got us up and running in no time. The system is very intuitive and easy to use anyway, but the training provided has allowed us to hit the ground running.

It's very easy to add a new supplier to the platform. A lot of suppliers already have a Risk Ledger profile, which dramatically reduces the time it takes to obtain a completed risk assessment. This network model is definitely a big plus point. For a new supplier who hasn't already completed a Risk Ledger profile, adding them to the platform is as simple as filling in a few details, and the system takes care of the required communications. The supplier receives a link to the online assessment, and we receive regular updates to let us know when they have completed it. We are then able to see how compliant they are with the various policies set up. Any non-compliances are highlighted, and risks can be opened and remediation requested from the supplier with the click of a button. Review collected by and hosted on G2.com.

It's early days in our relationship with Risk Ledger and, so far, I have no complaints. Review collected by and hosted on G2.com.

The auto saving is a very useful feature as I often get pulled away on to other tasks, but I know I can return and answer a few more questions without having to repeat myself. Review collected by and hosted on G2.com.

The data submitted isn't really PII or business sensitive so I am unsure why MFA needs to be enabled. I would have thought U/N and Password would have been sufficient to protect the classification of data. Review collected by and hosted on G2.com.