SAFE, a provider of AI-native platforms for unified cyber risk and exposure management, acquired RiskLens, a leading cyber risk quantification software company, in July 2023 for an undisclosed amount. RiskLens specializes in empowering large enterprises and government organizations to manage cyber risk from a business perspective, quantifying it in financial terms. Its software is purpose-built on FAIR, the standard quantitative model for information security and operational risk, helping customers understand financial cyber risk exposure and prioritize mitigations.
SAFE offers a comprehensive platform designed to quantify and manage various cyber risks, including third-party, enterprise, and AI-related exposures. The company's SAFE One platform leverages agentic AI to provide autonomous cyber risk management, covering continuous threat exposure management (CTEM) and third-party risk management (TPRM), alongside its own cyber risk quantification (CRQ) solutions. SAFE has been recognized as a leader in the CRQ market.
This acquisition represents a strategic move to integrate RiskLens's specialized expertise in FAIR-based cyber risk quantification and its deep experience with critical industries into SAFE's broader offering. By buying RiskLens, SAFE aims to enhance its capabilities in translating technical cyber risks into actionable financial insights for C-suite executives and boards. The union strengthens SAFE’s ability to offer a comprehensive solution that not only identifies and manages exposure but also quantifies its financial impact with established methodologies.
The synergy between RiskLens's robust, FAIR-driven quantification methodology and SAFE's AI-native platform is expected to create a more powerful and autonomous cyber risk management solution. This combination allows for a unified approach to assessing, prioritizing, and mitigating cyber risks, enabling organizations to optimize security investments and manage cyber insurance coverage more effectively. The acquisition underscores a commitment to providing enterprises with a clear, financially-driven understanding of their cyber risk posture, with the combined entity poised to offer unparalleled capabilities for strategic cyber risk management.