Comparison Overview

Five Below

VS

Marisa S.A.

Five Below

701 MARKET STREET , Suite 600, Philadelphia, PA, US, 19106
Last Update: 2025-12-09
View Profile
Between 750 and 799
http://www.fivebelow.com

At Five Below our growth is a result of the people who embrace our purpose: We know life is way better when you are free to Let Go & Have Fun in an amazing experience, filled with unlimited possibilities, priced so low, you can always say yes to the newest, coolest stuff! Just ask any of our over 20,000 associates who work at Five Below and they’ll tell you there’s no other place like it. It all starts with our purpose and then, The Five Below Way, which is our values and behaviors that each and every associate believes in. So if your heart is beating a little quicker and your smile is getting bigger now that you know what we’re all about, let’s just say your search for a one-of-a-kind experience that’s much more than a j-o-b just might be officially ending HERE. It’s all about culture at Five Below, making this a place that can inspire you as much as you inspire us with big ideas, super energy, passion, and the ability to make the workplace a WOWplace! BE AWARE OF FRAUD! Please be aware of potentially fraudulent job postings or suspicious recruiter activity by persons that are posing as a Five Below recruiters. Please confirm that the person you are working with has an @fivebelow.com email address. Additionally, Five Below does NOT request financial information or payments from candidates at any point during the hiring process. If you suspect fraudulent activity, please visit Five Below’s Careers Site at www.fivebelow.com/info/careers to verify the posting.

NAICS: 43
NAICS Definition: Retail Trade
Employees: 12,118
Subsidiaries: 0
12-month incidents
0
Known data breaches
1
Attack type number
1
View Profile

Marisa S.A.

Rua James Holland, 422 - Barra Funda, São Paulo, SP, 01138-000, BR
Last Update: 2025-12-09
Between 750 and 799
http://www.marisa.com.br

Marisa S.A. is the largest Brazilian department store chain specialized in women’s clothing based on the number of stores in Brazil. The Company’s business strategy and operations focus primarily on middle-lower income women between the ages of 20 and 35. The Company’s target customers are members of the largest socioeconomic group in Brazil, according to the Brazilian Association of Population Studies (Associação Brasileira de Estudos Populacionais), or ABEP. Marisa designs and sells at competitive prices a wide variety of products that reflect current national and international fashion trends. Its products are sold primarily under the brand "Marisa"​ and are displayed in Marisa’s stores according to "lifestyle"​ categories. During Marisa’s more than 60 years in business, the Company has developed in-depth knowledge of the needs and tastes of its target customers. As a result, Marisa has developed a corporate image that reflects the affinity the Company believes it shares with Brazilian women. "Marisa"​ brand is recognized today throughout Brazil as young, modern and sexy. It is associated with the well-known slogan "By Women for Women"​ ("De Mulher para Mulher"​), a slogan that reflects Marisa’s image as a company that understands and responds to the needs and desires of its target market. For example, according to surveys carried out by Interscience, Marisa is the first choice of middle-lower income Brazilian women who want to be fashionable and to acquire quality lingerie at competitive prices.

NAICS: 452
NAICS Definition:
Employees: 13,981
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/five-below.jpeg
Five Below
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/lojasmarisa.jpeg
Marisa S.A.
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Five Below
100%
Compliance Rate
0/4 Standards Verified
Marisa S.A.
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Retail Industry Average (This Year)

No incidents recorded for Five Below in 2025.

Incidents vs Retail Industry Average (This Year)

No incidents recorded for Marisa S.A. in 2025.

Incident History — Five Below (X = Date, Y = Severity)

Five Below cyber incidents detection timeline including parent company and subsidiaries

Incident History — Marisa S.A. (X = Date, Y = Severity)

Marisa S.A. cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/five-below.jpeg
Five Below
Incidents

Date Detected: 11/2018
Type:Breach
Attack Vector: Unauthorized Access
Blog: Blog
https://images.rankiteo.com/companyimages/lojasmarisa.jpeg
Marisa S.A.
Incidents

No Incident

FAQ

Marisa S.A. company demonstrates a stronger AI Cybersecurity Score compared to Five Below company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Five Below company has historically faced a number of disclosed cyber incidents, whereas Marisa S.A. company has not reported any.

In the current year, Marisa S.A. company and Five Below company have not reported any cyber incidents.

Neither Marisa S.A. company nor Five Below company has reported experiencing a ransomware attack publicly.

Five Below company has disclosed at least one data breach, while the other Marisa S.A. company has not reported such incidents publicly.

Neither Marisa S.A. company nor Five Below company has reported experiencing targeted cyberattacks publicly.

Neither Five Below company nor Marisa S.A. company has reported experiencing or disclosing vulnerabilities publicly.

Neither Five Below nor Marisa S.A. holds any compliance certifications.

Neither company holds any compliance certifications.

Neither Five Below company nor Marisa S.A. company has publicly disclosed detailed information about the number of their subsidiaries.

Marisa S.A. company employs more people globally than Five Below company, reflecting its scale as a Retail.

Neither Five Below nor Marisa S.A. holds SOC 2 Type 1 certification.

Neither Five Below nor Marisa S.A. holds SOC 2 Type 2 certification.

Neither Five Below nor Marisa S.A. holds ISO 27001 certification.

Neither Five Below nor Marisa S.A. holds PCI DSS certification.

Neither Five Below nor Marisa S.A. holds HIPAA certification.

Neither Five Below nor Marisa S.A. holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

NXLog Agent before 6.11 can load a file specified by the OPENSSL_CONF environment variable.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 8.1
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
References
Description

uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 2.9
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
References
Description

A vulnerability was detected in Mayan EDMS up to 4.10.1. The affected element is an unknown function of the file /authentication/. The manipulation results in cross site scripting. The attack may be performed from remote. The exploit is now public and may be used. Upgrading to version 4.10.2 is sufficient to fix this issue. You should upgrade the affected component. The vendor confirms that this is "[f]ixed in version 4.10.2". Furthermore, that "[b]ackports for older versions in process and will be out as soon as their respective CI pipelines complete."

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

MJML through 4.18.0 allows mj-include directory traversal to test file existence and (in the type="css" case) read files. NOTE: this issue exists because of an incomplete fix for CVE-2020-12827.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 4.5
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:L
References
Description

A half-blind Server Side Request Forgery (SSRF) vulnerability exists in kube-controller-manager when using the in-tree Portworx StorageClass. This vulnerability allows authorized users to leak arbitrary information from unprotected endpoints in the control plane’s host network (including link-local or loopback services).

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 5.8
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
References