NetRise spent the week underscoring its role in software supply chain and third-party risk management, while rolling out capabilities that target emerging AI-related security gaps. The company’s messaging centered on moving beyond traditional questionnaire-based vendor assessments toward direct, data-driven visibility into shipped software and embedded components.
Claim 55% Off TipRanks
- Unlock hedge fund-level data and powerful investing tools for smarter, sharper decisions
- Discover top-performing stock ideas and upgrade to a portfolio of market leaders with Smart Investor Picks
NetRise maintained a strong presence at the TPRA 2026 Risk Management Conference in Denver, highlighting sessions titled “Escaping the Questionnaire Trap” and related talks on data-driven third-party software risk. Executives emphasized independent software-level verification, uncovering vulnerabilities and non-CVE risks, and detecting discrepancies between vendor claims and actual builds.
The company also announced plans to participate in the IANS Dallas forum on April 29, where its VP of Field Engineering will lead sessions on third-party software risk. These presentations, positioned as going “beyond the questionnaire,” are aimed at security, GRC, and risk-management buyers seeking more rigorous approaches to software supply chain oversight.
Complementing its event activity, NetRise expanded its platform with AI Models and Components Identification integrated into its SBOM workflows. The feature is designed to detect AI artifacts within firmware and software, surface associated providers such as OpenAI, Anthropic, Google, and Hugging Face, and present model-level context including architecture and parameter counts.
Supported formats include ONNX, TFLite, SafeTensors, TensorRT, and pickle, enabling coverage of common deployment formats for embedded and machine learning workloads. By incorporating AI models directly into SBOMs, NetRise aims to address growing regulatory and enterprise scrutiny around AI transparency and software supply chain security.
The company also highlighted the expanding risk posed by AI-driven endpoints, where assistants increasingly install dependencies and execute code on user devices. This commentary frames everyday laptops as de facto build pipelines, broadening the attack surface and reinforcing the need for advanced visibility into AI-mediated software activity.
Taken together, NetRise’s conference engagement, AI-focused product enhancements, and thought leadership on endpoint supply chain risk suggest a concerted push to align with structural cybersecurity trends. The week’s developments appear supportive of the company’s positioning in third-party risk, SBOM, and AI-era supply chain security markets, with potential to bolster future enterprise demand.