Bitsight reports 40% vendor network growth amid AI integration

Bitsight has reported significant growth in the adoption of its integrated third-party risk and exposure management solutions as more enterprises incorporate artificial intelligence into their risk and compliance workflows.

According to the company, the Bitsight vendor network has expanded by 40%, now comprising 68,000 organisations. The adoption surge has been attributed to organisations' efforts to streamline operational processes and reduce compliance burdens by shifting away from discrete, task-specific tools in favour of integrated, AI-driven workflows.

The latest report from Bitsight highlights that vendor onboarding times are being reduced by up to 70% on the platform, and that the likelihood of a breach arising from third-party vulnerabilities has dropped by as much as 75% for its customers. The company notes that key compliance and third-party risk management duties that previously required up to eight hours can now be completed in just 90 seconds through the use of the company's AI-powered Framework Intelligence solution.

Integrated approach

"We're seeing a seismic shift in how compliance and security teams manage third-party risk," said Vanessa Jankowski, SVP of Product at Bitsight. "Point solutions may automate a single task, but they fail to provide the continuous, threat-informed visibility enterprises require. With Bitsight AI, organizations are moving away from siloed tools in favor of integrated workflows - delivering real, actionable intelligence - that enables faster decisions and more resilient operations at scale."

The Bitsight platform aggregates questionnaire exchange, artificial intelligence-driven framework alignment, and real-time exposure and threat intelligence. The company said this approach delivers a dynamic and continuously updated view of vendor risk across its network. Bitsight's Trust Management Hub Vendor Network now includes a centralised space where companies can securely exchange security documentation and assessment questionnaires. Year-on-year, the company reports a 39% increase in Vendor Risk Management customers.

Jason Benedict, Chief Information Security Officer at Fordham University, described the impact of integrated risk management for his team: "Managing third-party risk used to mean juggling multiple tools and manual processes. With Bitsight, we finally have an integrated platform that ties it all together - AI speeds up the work, and the intelligence behind it means our decisions are more reliable."

AI and Framework Intelligence

The Framework Intelligence tool utilises AI to automate one of the more labour-intensive components of third-party risk management: parsing vendor questionnaires and aligning documentation to standards like SIG, NIST CSF, and ISO 27001. Early customer feedback cited in the report indicates that compliance activities previously taking up to eight hours are now completed in 90 seconds with the help of Framework Intelligence. This has resulted in over 99% reduction in vendor assessment task durations, and is helping organisations keep pace with shifting regulatory demands by minimising manual work and streamlining documentation processes.

Bitsight said organisations using its tools can leverage its proprietary dataset, which includes insights from deep and dark web threat intelligence, external exposure data, and documentation from thousands of vendors. This enables users to access a continuously updated, comprehensive view of third-party risk at an individual vendor level.

Upcoming capabilities

Bitsight disclosed that it will roll out new capabilities to its platform in the coming months. Planned enhancements include expanded integrated Vendor Risk Management workflows that convert assessment results into actionable steps using network data for deeper analysis, as well as smarter Vendor Risk Management agents designed to automate key tasks, such as gathering security artefacts, collecting relevant information from various online sources, and generating follow-up actions.

The company also intends to introduce a threat intelligence overlay, which will enable customers to prioritise responses according to threat actor activities and associated trends across deep, dark, and open web sources.

Bitsight's recent growth figures and planned feature rollouts suggest continued focus on helping enterprises centralise and automate third-party risk and compliance activities in response to an increasingly complex risk and regulatory environment.