TrustCloud®, the AI-native Security Assurance Platform, has announced a major update to TrustLens®, its Third-Party Risk Management (TPRM) solution. The update introduces agentic AI capabilities designed to solve the "speed vs. accuracy" dilemma that has long plagued enterprise CISOs. By shifting the focus from manual, process-driven assessments to outcome-driven risk reduction, TrustLens enables organizations to automate over 70% of assessment work while maintaining deterministic accuracy and human oversight.
Agentic AI Performance: A Global 2000 life sciences customer assessed 5,000+ suppliers in six months—a 10x improvement over traditional methods.
Massive Coverage: The AI agent helped increase vendor ecosystem coverage from 20% to 92%.
Enhanced Detection: TrustLens identified 4x more critical gaps compared to prior manual processes.
Workflow Automation: Automates >70% of the assessment lifecycle, reducing "back-and-forth" manual data collection.
Continuous Assurance: Replaces point-in-time questionnaires with continuous, data-driven evidence that monitors for "security drift."
Dynamic Scoping: Automatically right-sizes assessments based on a vendor's inherent risk tier rather than using one-size-fits-all forms.
Disrupting the "Checkbox" TPRM Status Quo
TrustCloud’s update takes an unapologetic stance against "checkbox-driven" TPRM. Traditional models often reward teams for completing a rigid process rather than actually reducing risk. TrustLens addresses the dangerous assumption that documenting risk is the same as managing it. In an era where third-party ecosystems are the primary source of cyber exposure, TrustLens provides CISOs with a high-confidence predictor of risk backed by real-time data.
"Our industry has normalized a version of TPRM that is process-driven rather than outcome-driven," said Jikku Venkat, Head of Product at TrustCloud. "We have introduced an AI agent in TrustLens that automates greater than 70% of the assessment work while still giving the risk analyst control over final decisions and approvals."
The new version of TrustLens provides several advanced capabilities intended to modernize the vendor risk lifecycle:
Intelligent Summaries: Generates risk reports that cite specific documentation and combine "inside-out" and "outside-in" data.
Interactive Insights: Users can ask the AI questions about a vendor’s specific risk posture or business impact.
Proactive Monitoring: Continuously tracks security drift, ensuring that a completed assessment remains valid as the vendor’s posture evolves.
Real-Time Knowledge: Analyzes evidence instantly to eliminate the weeks typically spent waiting for vendor responses.
"The future of risk assessment and reporting will require us to understand, report, and reduce risk with transparency, automation, and a data-driven approach that operates 24x7," added Dan Walsh, CISO at Datavant.
About TrustCloud
TrustCloud is the only Security Assurance Platform providing AI-native GRC transformation for Chief Information Security Officers. Purpose-built for Global 2000 scale, TrustCloud replaces sampling-based assessments with continuous, evidence-backed security assurance. The platform reduces internal audit times from 28 days to three and saves an average of 63 person-days of manual work per user annually.
TechIntelPro empowers B2B technology decision-makers with the latest industry trends, deep insights, leadership perspectives and actionable intelligence to drive both organizational and professional milestones—and thrive on the tech pulse.