TrustCloud raises $15M led by ServiceNow Ventures & Cisco to reinvent enterprise GRC with AI-driven risk automation

TrustCloud, a security assurance platform that leans heavily on AI to make life easier for enterprise security teams, just raised $15 million in strategic funding. The round was led by ServiceNow Ventures, with backing from Cisco Investments, Presidio Ventures, OpenView Venture Partners, Tola Capital, and other existing investors.

The company’s momentum over the past year has clearly caught investor attention. With a growing base of enterprise and mid-market customers, TrustCloud plans to use the new capital to ramp up its go-to-market efforts and build out partnerships. Part of the money will also go into making its AI even more capable, especially in giving CISOs a clearer picture of the risks scattered across their IT systems.

ServiceNow and Cisco Bet on AI-Powered GRC as TrustCloud Closes $15M Strategic Round

At its core, TrustCloud plugs into all the places where security and risk data live, analyzes it, and strips away thousands of hours of manual work that security teams typically slog through. For CISOs, that means being able to reallocate resources to higher-impact projects, reduce exposure, and move faster on both compliance and business initiatives.

“This strategic investment validates the urgent need to modernize GRC for enterprise CISOs and their teams, and unify CISOs and Chief Risk Officers around a shared view of risk,” said Sravish Sridhar, CEO of TrustCloud. “We built TrustCloud to seamlessly integrate with major enterprise platforms, so that we could make it as simple as possible for mature organizations to eliminate manual work, align security and risk teams to make better decisions, and give CISOs the tools they need to drive business value by reducing risk and maintaining compliance assurance.”

TrustCloud positions itself as a purpose-built platform for GRC (governance, risk, and compliance) transformation. Its goal is to help CISOs and CROs take action based on data, rather than instincts, while minimizing costs and increasing confidence across security programs.

Over the past year, TrustCloud has rolled out a trio of features that push its platform further ahead. The first is something called Hybrid Data Fabric—a system that acts like a giant funnel, pulling in data from more than 100 SaaS tools and on-prem systems. It gives teams a single, unified view of their IT, business, and security environments.

Next is Continuous Control Monitoring, built on what TrustCloud calls its Control Graph. It’s an AI-driven system that maps how controls relate to each other across the organization. When something changes, it doesn’t just notify you—it analyzes the potential fallout and helps decide what needs attention first.

Then there’s Assurance AI. These are purpose-built machine learning and NLP models, boosted by retrieval-augmented generation (RAG), that work across the platform’s data and control layers. They automate complex GRC workflows while avoiding the usual noise or inaccuracies that come with generic AI models.

Victor Change, Vice President of ServiceNow Ventures, said the firm is backing TrustCloud as more enterprises look to overhaul how they manage risk and compliance. “As a leader in enterprise GRC, we’re excited to support TrustCloud’s growth as enterprises look to modernize risk and compliance workflows and drive greater operational efficiency.”

Cisco is thinking along similar lines. “Automating enterprise cyber risk management is increasingly mission-critical for CISOs,” said Prasad Parthasarathi, Senior Director at Cisco Investments. “Trust Cloud’s expertise in delivering visibility and context through its AI-enabled continuous controls provides CISOs with an integrated, multi-dimensional view of cyber risk across security, compliance, financial/insurance, regulatory, and customer contractual risk.”

Founded in 2020 by Sridhar, TrustCloud is a Boston, MA-based tech startup that has built a platform that fits neatly into the tech stacks of large enterprises. It integrates with major IT, data, and cybersecurity platforms, helping security teams consolidate their workflows and uncover hidden risks. It gives both CISOs and CROs a better handle on what’s happening and where to focus next.

An AI Platform Shaping the Future of Enterprise GRC

TrustCloud is used by enterprises in a few important ways. It helps teams continuously monitor internal controls and keep a close watch on third-party vendors. It also takes the manual grunt work out of compliance by automatically identifying gaps and checking for readiness. And when it comes to assessing risk, whether it’s inside the company or coming from external partners, the startup simplifies the process and helps quantify it with far less effort.

The company says it has doubled annual recurring revenue every year for the past three years and consistently sees over 98% gross revenue retention and 115 %+ net revenue retention. More than 1,000 businesses rely on TrustCloud to manage sensitive data and meet compliance requirements—customers include names like Corelight, DataRobot, Dolby, Grafana, NetApp, and ServiceNow.

As security and risk management continue to move up the executive priority list, TrustCloud is making a strong case that it’s not just a helpful tool—it’s part of the strategic tech stack. The $15 million infusion puts more fuel in the tank as it works to simplify how enterprises stay secure, compliant, and operationally ready.