RiskVision: Funding, Team & Investors

About

RiskVision builds an integrated risk management (IRM) software platform for evolving threat landscapes. Its enterprise intelligence platform enables organizations to manage governance, risk, and compliance (GRC), IT risk, security operations, and vendor risk with real-time analytics. It delivers a unified risk view, helping enterprises identify, assess, and mitigate vulnerabilities.

Pravin Kothari founded the company in 2005, driven by the critical need for holistic organizational risk management. He recognized traditional, siloed practices insufficient against sophisticated, data-driven threats. This insight led to the development of a unified platform, integrating diverse risk data for actionable intelligence.

RiskVision serves large enterprises and government agencies, fortifying security and operational resilience. Its solutions streamline risk processes to maximize IT budgets and enhance rapid threat response. The company’s vision focuses on delivering intelligence-based solutions that transform how organizations manage risk.

Financial History

RiskVision has raised $22.0M across 3 funding rounds. Most recently, it raised $5.0M Other Equity in May 2014.

Total Raised

$22.0M

Valuation

N/A

Funding Rounds Raised

Date	Round	Lead Investors
May 14, 2014	$5.0M Other Equity	Vikram Gupta
Jun 1, 2008	$10.0M Series B
Nov 1, 2006	$7.0M Series B	Kip Myers, cliff higgerson

Deep Dive

RiskVision is a governance, risk, and compliance (GRC) technology product that focused on continuous, data-driven risk analysis and operationalizing remediation workflows for security, IT, vendor, and operational risk management; its capabilities were later acquired and integrated into Resolver's platform.[2][1]

High-Level Overview

Concise summary: RiskVision (originally marketed under Agiliance RiskVision) is an Integrated Risk Management / security operations product that emphasized “continuous risk” or “always‑on” assessments, real‑time ingestion and correlation of asset, vulnerability and threat data, and automated remediation workflows to help organizations prioritize and close security and compliance gaps.[1][6][2]

For an investment firm (not applicable): RiskVision is a portfolio product (see acquisition by Resolver), so the firm-oriented fields below describe Resolver’s strategic rationale for the acquisition rather than RiskVision itself.[2]

Mission (acquirer context): Resolver’s stated aim in acquiring RiskVision was to expand its Integrated Risk Management capabilities and help Information Security and Compliance teams prioritize and reduce vulnerabilities and threats using RiskVision’s technology.[2]
Investment philosophy / Key sectors / Impact on startup ecosystem: Not applicable to RiskVision as a company product; the acquisition broadened Resolver’s product set in security, risk, and compliance software and expanded support capacity for existing RiskVision customers.[2]

For a portfolio company (RiskVision as a product/company):

What product it builds: An IRM/GRC and security operations platform (RiskVision) providing threat & vulnerability management, IT risk, vendor risk, incident management, continuous risk assessments, and automated remediation/ticketing workflows.[1][2][5]
Who it serves: Enterprises and large organizations (including federal buyers such as the U.S. Department of Veterans Affairs) with security, compliance, and risk teams that need consolidated, actionable risk intelligence across assets and controls.[5][1]
What problem it solves: It reduces noise and manual effort by ingesting scanner and other telemetry, correlating vulnerabilities, threats, and controls in real time, prioritizing remediation, and automating ticketing and workflow to close the loop on risk mitigation.[1][6]
Growth momentum: RiskVision was a mature, market-recognized product with updates over time (multiple platform refreshes) and institutional customers; in 2024 (public announcement) Resolver acquired RiskVision to fold its capabilities into a broader IRM platform, signaling strategic value and continuity of development and support under Resolver.[2][6]

Origin Story

Founding / background: RiskVision originated as the Agiliance RiskVision product; Agiliance positioned RiskVision as a nearly pure-play risk analysis and management tool in the GRC space and refreshed the platform across product versions to emphasize context‑aware and continuous risk management.[6][7][1]
How the idea emerged: The product evolved to address gaps in traditional GRC tools—namely slow, snapshot-based assessments and disconnected vulnerability/asset data—by providing continuous collection, correlation and real‑time response to security and compliance telemetry (the “Always On Assessments” approach).[1][6]
Early traction / pivotal moments: Reviews and product refreshes (e.g., RiskVision 4.0) highlighted scaling to enterprise needs and richer compliance mappings; the notable pivotal moment was RiskVision’s acquisition by Resolver, which integrated its capabilities into a larger IRM suite and committed to maintaining development teams and customer support globally.[7][2]

Core Differentiators

Continuous / real‑time risk assessments: RiskVision’s “Always On Assessments” continuously collect and analyze telemetry rather than relying on periodic extracts, enabling more timely prioritization and response.[1]
Data correlation and de‑duplication: The product ingests scanner feeds (e.g., Nessus, Qualys) and other sources, correlates overlapping findings, and deduplicates to reduce noise and focus remediation effort.[1]
Automated remediation workflows and closed loop ticketing: RiskVision automates ticket creation (internal or third‑party) and closes the remediation loop, integrating vulnerability identification with operational workflows.[1]
Broad standards and control libraries: Out‑of‑the‑box support for many standards and an internal risk/control library (Agiliance Risk Library) with pre‑mapped controls (ISO baseline) to speed compliance coverage.[1]
Security operations and IRM convergence: A blend of IRM/GRC features with SOAR-like analytic and reporting capabilities positioned RiskVision as a bridge between compliance programs and security operations.[5][2]
Enterprise maturity and federal usage: Documented use and assessments by organizations such as the U.S. Department of Veterans Affairs indicate a mature, supported platform acceptable for high‑security environments.[5]

Role in the Broader Tech Landscape

Trend alignment: RiskVision rode the shift from point-in-time compliance toward continuous, data-driven Integrated Risk Management and the convergence of GRC and security operations (IRM + SOAR tendencies).[1][6][2]
Why timing mattered: As attack surfaces expanded and telemetry volumes grew, organizations needed tools that could prioritize noisy security signals and tie them to business risk and controls in near real time; RiskVision’s approach addressed that operational gap.[1][6]
Market forces in its favor: Regulatory pressure, growing third‑party/vendor risk concerns, and the proliferation of vulnerability and asset scanners created demand for solutions that centralize and contextualize risk data across teams.[5][1]
Influence on the ecosystem: By operationalizing risk data (automated ticketing, control mapping, deduplication), RiskVision helped push GRC vendors toward more actionable, continuous models and influenced how enterprises integrated security operations with risk and compliance workflows.[1][2]

Quick Take & Future Outlook

What’s next (post‑acquisition): Under Resolver, RiskVision’s technology has been integrated into a larger IRM platform with promises of continued development (teams retained in California and India) and expanded global support, likely accelerating feature convergence and deeper platform integration across Plan/Prepare/Respond/Recover workflows.[2]
Trends that will shape the journey: Ongoing demand for continuous risk quantification, tighter integration between security telemetry and business risk models, AI/ML for prioritization, and vendor risk management will continue to drive enhancement of IRM platforms built from technologies like RiskVision.[2][1]
How influence may evolve: As part of Resolver, RiskVision’s real‑time risk assessment and remediation automation capabilities are likely to scale to more customers and be embedded as standard IRM capabilities, further eroding the boundary between traditional GRC and active security operations.[2][1]

Quick take: RiskVision was a focused, mature IRM/security operations product that made continuous, contextual risk management operational; its acquisition by Resolver validated its technical strengths and positioned its capabilities for broader distribution and deeper integration within a leading IRM platform.[1][2]

Deep Dive

High-Level Overview

Concise summary: RiskVision (originally marketed under Agiliance RiskVision) is an Integrated Risk Management / security operations product that emphasized “continuous risk” or “always‑on” assessments, real‑time ingestion and correlation of asset, vulnerability and threat data, and automated remediation workflows to help organizations prioritize and close security and compliance gaps.[1][6][2]

Mission (acquirer context): Resolver’s stated aim in acquiring RiskVision was to expand its Integrated Risk Management capabilities and help Information Security and Compliance teams prioritize and reduce vulnerabilities and threats using RiskVision’s technology.[2]
Investment philosophy / Key sectors / Impact on startup ecosystem: Not applicable to RiskVision as a company product; the acquisition broadened Resolver’s product set in security, risk, and compliance software and expanded support capacity for existing RiskVision customers.[2]

For a portfolio company (RiskVision as a product/company):

What product it builds: An IRM/GRC and security operations platform (RiskVision) providing threat & vulnerability management, IT risk, vendor risk, incident management, continuous risk assessments, and automated remediation/ticketing workflows.[1][2][5]
Who it serves: Enterprises and large organizations (including federal buyers such as the U.S. Department of Veterans Affairs) with security, compliance, and risk teams that need consolidated, actionable risk intelligence across assets and controls.[5][1]
What problem it solves: It reduces noise and manual effort by ingesting scanner and other telemetry, correlating vulnerabilities, threats, and controls in real time, prioritizing remediation, and automating ticketing and workflow to close the loop on risk mitigation.[1][6]
Growth momentum: RiskVision was a mature, market-recognized product with updates over time (multiple platform refreshes) and institutional customers; in 2024 (public announcement) Resolver acquired RiskVision to fold its capabilities into a broader IRM platform, signaling strategic value and continuity of development and support under Resolver.[2][6]

Origin Story

Founding / background: RiskVision originated as the Agiliance RiskVision product; Agiliance positioned RiskVision as a nearly pure-play risk analysis and management tool in the GRC space and refreshed the platform across product versions to emphasize context‑aware and continuous risk management.[6][7][1]
How the idea emerged: The product evolved to address gaps in traditional GRC tools—namely slow, snapshot-based assessments and disconnected vulnerability/asset data—by providing continuous collection, correlation and real‑time response to security and compliance telemetry (the “Always On Assessments” approach).[1][6]
Early traction / pivotal moments: Reviews and product refreshes (e.g., RiskVision 4.0) highlighted scaling to enterprise needs and richer compliance mappings; the notable pivotal moment was RiskVision’s acquisition by Resolver, which integrated its capabilities into a larger IRM suite and committed to maintaining development teams and customer support globally.[7][2]

Core Differentiators

Continuous / real‑time risk assessments: RiskVision’s “Always On Assessments” continuously collect and analyze telemetry rather than relying on periodic extracts, enabling more timely prioritization and response.[1]
Data correlation and de‑duplication: The product ingests scanner feeds (e.g., Nessus, Qualys) and other sources, correlates overlapping findings, and deduplicates to reduce noise and focus remediation effort.[1]
Automated remediation workflows and closed loop ticketing: RiskVision automates ticket creation (internal or third‑party) and closes the remediation loop, integrating vulnerability identification with operational workflows.[1]
Broad standards and control libraries: Out‑of‑the‑box support for many standards and an internal risk/control library (Agiliance Risk Library) with pre‑mapped controls (ISO baseline) to speed compliance coverage.[1]
Security operations and IRM convergence: A blend of IRM/GRC features with SOAR-like analytic and reporting capabilities positioned RiskVision as a bridge between compliance programs and security operations.[5][2]
Enterprise maturity and federal usage: Documented use and assessments by organizations such as the U.S. Department of Veterans Affairs indicate a mature, supported platform acceptable for high‑security environments.[5]

Role in the Broader Tech Landscape

Trend alignment: RiskVision rode the shift from point-in-time compliance toward continuous, data-driven Integrated Risk Management and the convergence of GRC and security operations (IRM + SOAR tendencies).[1][6][2]
Why timing mattered: As attack surfaces expanded and telemetry volumes grew, organizations needed tools that could prioritize noisy security signals and tie them to business risk and controls in near real time; RiskVision’s approach addressed that operational gap.[1][6]
Market forces in its favor: Regulatory pressure, growing third‑party/vendor risk concerns, and the proliferation of vulnerability and asset scanners created demand for solutions that centralize and contextualize risk data across teams.[5][1]
Influence on the ecosystem: By operationalizing risk data (automated ticketing, control mapping, deduplication), RiskVision helped push GRC vendors toward more actionable, continuous models and influenced how enterprises integrated security operations with risk and compliance workflows.[1][2]

Quick Take & Future Outlook

What’s next (post‑acquisition): Under Resolver, RiskVision’s technology has been integrated into a larger IRM platform with promises of continued development (teams retained in California and India) and expanded global support, likely accelerating feature convergence and deeper platform integration across Plan/Prepare/Respond/Recover workflows.[2]
Trends that will shape the journey: Ongoing demand for continuous risk quantification, tighter integration between security telemetry and business risk models, AI/ML for prioritization, and vendor risk management will continue to drive enhancement of IRM platforms built from technologies like RiskVision.[2][1]
How influence may evolve: As part of Resolver, RiskVision’s real‑time risk assessment and remediation automation capabilities are likely to scale to more customers and be embedded as standard IRM capabilities, further eroding the boundary between traditional GRC and active security operations.[2][1]

RiskVision

About

Recent News & Mentions

Financial History

Funding Rounds Raised

Financial History

Deep Dive

Sources

Frequently Asked Questions

Frequently Asked Questions

Deep Dive

Sources

Frequently Asked Questions

Recent News & Mentions

Financial History

Funding Rounds Raised