Overview
The Primary Output Metric setting allows administrators to choose the default risk metric displayed throughout the Third-Party Risk Management (TPRM) module in SAFE.
The selected metric is used consistently across third-party dashboards, inventory views, lists, widgets, and reports, providing users with a unified view of vendor risk based on their organization's preferred measurement approach.
Navigate to Settings > Third Party > Primary Output Metric Tab.
Note
Changing the Primary Output Metric only changes the metric displayed across the Third-Party module. Historical data, underlying calculations, and risk models remain unchanged.
Available Metrics
SAFE provides three risk metrics that can be selected as the primary output metric.
Exposure Score (Recommended)
Range: 0–10
The Exposure Score measures an organization's security posture based on identified security findings collected from external and internal risk signals.
A higher score indicates a weaker security posture.
A lower score indicates better security hygiene.
SAFE Score
Range: 0–5
The SAFE Score measures how prepared an organization is to prevent a successful cyber breach. It is derived from breach likelihood and translated into a simplified score for easier interpretation.
A lower SAFE Score indicates higher risk.
A higher SAFE Score indicates better preparedness.
Likelihood
Range: 0%–100%
The Likelihood metric represents the probability of a successful cyber breach occurring.
Likelihood is expressed as a percentage.
Higher percentages indicate a greater probability of compromise.
Lower percentages indicate lower estimated breach probability.
This metric is valuable for organizations that prefer probability-based risk measurements.
