General overview
Black Kite vs SAFE Security: 2026 Comparison
Black Kite Was Built for the Third-Party Risk Problem. SAFE Security Added It On.
Black Kite is a purpose-built third-party cyber risk management (TPCRM) platform. SAFE Security is a cyber risk quantification platform that added TPRM in 2024. One platform was designed for third-party risk from day one. The other is adapting to it. The result is a significant gap in intelligence depth, outside-in reconnaissance, Nth-party visibility, ransomware capabilities, and vendor collaboration, areas Black Kite has been building for nearly a decade, and SAFE is just beginning to address.
How Do Gartner and Forrester Rank Black Kite Against SAFE Security?
Black Kite has been solving third-party cyber risk since 2016. Every core capability*(Ransomware Susceptibility Index® (RSI™), FocusTags®, The Bridge™, Nth-party visibility, Open FAIR™-based CRQ, and the AI Agent) was developed natively as part of a unified TPRM architecture. On the contrary, SAFE Security spent its first decade as a first-party Cyber Risk Quantification (CRQ) platform. It expanded to TPRM only recently, launching a TPRM module in May 2024 and autonomous TPRM functionality in April 2025. Further, its platform evolution has been acquisition-driven: CRQ through the acquisition of RiskLens in July 2023, CTEM through Balbix in November 2025, all layered onto a first-party foundation.
The top two analyst firms confirm SAFE’s limited visibility in the third-party cyber security market. While Black Kite is recognized as a sample vendor for TPCRM in the Gartner Hype Cycle for Cyber-Risk Management (2025) and in the Forrester Wave™: Cybersecurity Risk Ratings Platforms, Q2 2026. SAFE Security does not appear in either report.
How Do Black Kite and SAFE Security Compare on Core TPCRM Capabilities?
See why organizations choose Black Kite.
| Capability | Black Kite | SAFE Security |
|---|---|---|
General overview | Black Kite was founded in 2016 by Candan Bolukbas, a certified ethical hacker whose work for NATO revealed that vulnerable third-party contractors were the primary stepping stones to high-value targets. That discovery led to the founding of Black Kite. The company was built from day one to solve the third-party problem by developing proprietary outside-in intelligence, continuous monitoring, and vendor risk capabilities as core architecture. Nearly a decade later, Black Kite has led the TPCRM market, setting the standard others follow. Its Third-party risk platform has been recognized by both Gartner and Forrester. | SAFE Security was founded in 2012 as an ethical hacking services company. It evolved into a first-party cyber risk quantification platform, establishing its identity as a CRQ/CRQM leader. SAFE entered third-party risk management in 2024–2025, launching its TPRM module in May 2024 and an agentic upgrade in April 2025. TPRM is SAFE’s newest product offering. It does not appear in the Gartner Hype Cycle for Cyber-Risk Management (2025) or the Forrester Wave™: Cybersecurity Risk Ratings Platforms, Q2 2026. |
Strengths | Black Kite was built for third-party cyber risk from day one, and its core capabilities reflect that. RSI™, FocusTags®, The Bridge™, Nth-party visibility, and Open FAIR™-based CRQ were all developed in-house by a team with deep TPCRM expertise. Further, AI was embedded into the platform from day one. The result is a platform defined by innovation, delivering many industry-first capabilities that have defined modern TPCRM. | SAFE's core strength is first-party cyber risk quantification. It has spent over a decade building CRQ capabilities, and its FAIR-based modeling, deepened through the RiskLens acquisition, gives organizations a structured way to quantify risk. Integration with first-party security tools like CrowdStrike provides inside-out risk context for organizations with mature internal security stacks. "What If" scenario modeling offers dynamic, visual risk analysis that appeals to teams focused on internal risk governance. For organizations whose primary need is first-party CRQ, SAFE is a credible option. |
Weaknesses | Black Kite was purpose built for third-party cyber risk management. Organizations whose primary need is first-party cyber risk quantification specifically may find SAFE's decade-long CRQ heritage well suited to that use case. | SAFE announced TPCRM in 2024, and its outside-in capabilities are newer and less proven in third-party cyber risk use cases. Several core capabilities were added through acquisitions, including CRQ via Risk Lens (2023), CTEM via Balbix (2025), while TPRM was introduced as a module layered onto SAFE’s existing first-party risk foundation. |
AI capabilities | Black Kite has long embedded AI and automation into its platform, enriching cyber intelligence, analyzing findings, and streamlining vendor cyber risk assessments. That investment has since evolved to fully agentic with the launch of its AI Agent in November 2025, built to autonomously execute core TPCRM workflows including deep investigations, vendor prioritization, executive and board reporting, cyber risk assessments, and more. | SAFE markets a suite of AI agents designed to automate TPRM workflows, streamline assessments, and accelerate risk identification and remediation.In May 2026, the launched an AI security posture management (AI-SPM) product to monitor exposure across AI solutions. |
API & Integrations | Black Kite's 50+ certified integrations are purpose-built for third-party risk workflows, connecting GRC, SecOps, and orchestration platforms to act on third-party intelligence. | SAFE claims 150+ integrations, but the majority are first-party solutions including EDR, vulnerability scanners, cloud security, and IAM, designed to aggregate internal telemetry, not operationalize third-party risk. |
Intelligence quality & accuracy | Black Kite collects signals from thousands of sources across public data, OSINT, dark web and hacker forums, paid threat feeds, and proprietary data discovery pipelines. This gives organizations a continuous, attacker-perspective view of their vendors' exposed assets, vulnerabilities, and threat signals. Black Kite has a 97% data accuracy. | SAFE highlights AI agents for telemetry correlation and external monitoring. While SAFE references a “Recon” AI agent that scans external attack surfaces, the depth and proprietary nature of that scanning is not widely documented publicly. SAFE also incorporates integrations with internal security telemetry that may strengthen first-party risk visibility, though those integrations may be less applicable in third-party risk scenarios where organizations typically lack access to vendors’ internal systems and security tooling. SAFE does not publicly disclose data accuracy metrics. |
Security rating | Black Kite rates vendors based on its own proprietary outside-in data, no vendor participation required. Ratings analyze 300+ technical controls across a 100-point A–F scale, giving security teams an immediate, attacker-perspective assessment of any vendor. Beyond a rating, Black Kite provides unique intelligence that reflect an organization's security posture including FocusTags®, Data Breach Index (DBI), RSI™, Adversary Susceptibility Index™ (ASI™), and more. | SAFE generates a SAFE Score between 0.00 to 5.00, representing all internal and external telemetry. It indicates the level of exposure to specific threats, includes risk of ransomware, system outage, and more, and is benchmarked to industry standards and requirements. |
Data transparency | Findings are organized into 20 risk categories. Provides full transparency into every data point and scoring logic. | SAFE's risk outputs are based on FAIR model parameters. While FAIR is an open standard, transparency into the underlying data driving those outputs is limited. Findings cannot be traced back to a verified source. With thin outside-in reconnaissance, what goes into the model is as important as the model itself. |
Framework mapping | Black Kite maps to a broader set of open standards including MITRE CTSA, CWRAF (CWE, CAPEC, ATT&CK, D3FEND), NIST 800-53, and Open FAIR™. | SAFE maps to MITRE ATT&CK and FAIR extensions (FAIR-CAM, FAIR-TAM, FAIR-NAM). |
Continuous monitoring coverage | Black Kite continuously monitors 40+ million profiles through proprietary outside-in scanning, delivering a real-time, attacker-perspective view of vendor risk at scale. | SAFE offers continuous monitoring through AI agents that scan external attack surfaces, dark web, breach archives, and SEC filings. SAFE does offer public detail on monitoring scale and profile coverage. |
Cyber risk assessments | Black Kite takes an intelligence-led approach to assessments. AI automatically parses vendor documents, pre-fills controls, and cross-references vendor responses against Black Kite's own outside-in intelligence to flag contradictions. | SAFE auto-fills questionnaires using public data, scans trust centers and external attack surfaces, and uses AI agents to chase vendor responses. "What If" scenario modeling allows teams to model control changes, though outputs are only as strong as the underlying intelligence feeding them. |
Extended supply chain visibility (4th-, 5th-, Nth-party) | Delivers Nth-party visibility, unlocking supply chain mapping and concentration risk analysis (e.g., 4th/5th party dependencies). | SAFE maps fourth-party dependencies through its ShadowScan agent, though there is no public detail around broader Nth-party visibility and concentration risk analysis. |
Cyber Risk Quantification (CRQ) | Black Kite natively integrates Open FAIR™ with minimal configuration. Its outside-in intelligence pre-populates the model, so organizations only need to add their own exposure variables (e.g. number of records shared) to produce third-party CRQ outputs. What-If scenario analysis lets teams model different business assumptions and instantly see the financial impact. | SAFE offers FAIR-based CRQ via the RiskLens acquisition using proprietary extensions (FAIR-CAM, FAIR-TAM, FAIR-NAM). It is SAFE's strongest capability and most mature for first-party risk. For third-party CRQ, the model requires significant configuration and expertise, and outputs are dependent on the quality of vendor intelligence feeding it. |
Ransomware intelligence | Black Kite's Ransomware Susceptibility Index® (RSI™) is a one-of-a-kind predictive metric that scores the likelihood of a vendor being hit by ransomware, giving organizations months of lead time to get ahead of it before an incident occurs. | No equivalent to RSI™ as a standalone predictive metric. However, SAFE mentions “risk of ransomware” being one of the factors that determine SAFE’s score. |
Data breach intelligence | Black Kite's Data Breach Index (DBI) delivers a dedicated numerical score reflecting a vendor's historical breach history and data loss, enabling security teams to benchmark vendors against industry peers. | SAFE's ThreatTrace agent monitors breach archives and surfaces historical breach signals as part of continuous monitoring. There is no equivalent standalone breach index or peer benchmarking capability. |
In-platform vendor collaboration | The Bridge™ goes beyond assessment collaboration to enable active, ongoing risk remediation. Teams initiate outreach directly from risk intelligence, vendors and customers operate in a shared environment, and remediation is tracked with full accountability, closing the loop between intelligence and action. | SAFE offers a dedicated vendor portal for assessment collaboration, AI-driven follow-ups, and issue tracking with Jira/ServiceNow integration. Vendor interaction is focused on the assessment workflow, there is no ongoing, intelligence-driven remediation outside of the assessment process. |
Strengths
Weaknesses
AI capabilities
API & Integrations
Intelligence quality & accuracy
Security rating
Data transparency
Framework mapping
Continuous monitoring coverage
Cyber risk assessments
Extended supply chain visibility (4th-, 5th-, Nth-party)
Cyber Risk Quantification (CRQ)
Ransomware intelligence
Data breach intelligence
In-platform vendor collaboration
| Category | Black Kite | SAFE Security |
|---|---|---|
Net Promoter Score (NPS) | +74 (World-Class Territory) | Not publicly disclosed |
Onboarding CSAT | 93% | Not publicly disclosed |
Customer Support CSAT | 100% (Consistently for 12 months) | Not publicly disclosed |
Gartner® Peer Insights™ Rating* | 4.8 / 5.0 | 3.9 / 5.0 |
Gartner® Peer Insights™ Willingness to Recommend (%)* | 98% | 82% |
Net Promoter Score (NPS)
Onboarding CSAT
Customer Support CSAT
Gartner® Peer Insights™ Rating*
Gartner® Peer Insights™ Willingness to Recommend (%)*
As of June, 15 2026. Source: https://www.gartner.com/reviews/product/black-kite-third-party-risk-intelligence-platform
What Makes Black Kite Different from SAFE Security?
Black Kite was purpose-built for third-party cyber risk from day one. Every capability, RSI™, DBI, ASI™, FocusTags®, The Bridge™, Nth-party visibility, was developed in-house by a team with deep TPCRM expertise. Black Kite has consistently set the pace, delivering industry-first capabilities that have defined modern TPCRM, all on a single platform accessible to organizations of every size.
Black Kite offerings
Black Kite delivers a comprehensive TPCRM platform that includes:
- Continuous Risk Monitoring with unique intelligence outputs including RSI™, FocusTags®, ASI™, DBI, and Open FAIR™-based CRQ.
- AI-Powered Cyber Assessments with intelligence-led document parsing, automated questionnaire management,
- Extended Supply Chain Intelligence with Nth-party visibility, supply chain mapping, and concentration risk analysis.
- The Bridge™ a customer-vendor collaboration platform to share continuous monitoring findings and collaborate on assessments.
Where Does SAFE Security Perform Strongest?
SAFE differentiates through FAIR-based cyber risk quantification - its core capability, deepened through the RiskLens acquisition. It offers CRQ for both first and third-party risk, integration with first-party security tools for inside-out context, and an agentic AI architecture marketed as a fully autonomous TPRM. SAFE's strongest use case remains first-party CRQ for organizations seeking to quantify and communicate internal cyber risk in financial terms.
SAFE Security offerings
SAFE offers a cyber risk management platform that includes:
- FAIR-based CRQ (via RiskLens) with What-If scenario modeling
- A TPRM module launched in May 2024 with AI agents for assessments, continuous monitoring, and vendor interaction
- CTEM (via Balbix acquisition)
- AI Security Posture Management (AI-SPM) launched in 2026.