The RTJ Bridge - The Research Platform Created by the Publishers of The RiskTech Journal
The RTJ Bridge is an independent research platform delivering institutional-grade IRM market intelligence, vendor competitive assessments, and strategic risk technology analysis. Built by the analyst who created the Integrated Risk Management category at Gartner, The RTJ Bridge gives risk leaders, technology executives, and solution providers the same caliber of competitive intelligence that major analyst firms charge $25,000 to $50,000+ per year to access.
Subscribers to The RTJ Bridge receive full access to:
IRM50 OnWatch Vendor Assessments — Competitive analysis of leading IRM vendors as market events unfold, covering platform strategy shifts, M&A impact, earnings signals, and positioning changes.
Autonomous IRM and AI Governance Research — Original research on how agentic AI is reshaping risk management operating models, from production deployment patterns to the structural implications for vendor platforms and enterprise programs.
Analyst Firm and Market Critiques — Independent assessments of research from Gartner, Forrester, and other major analyst firms, viewed through the IRM Navigator Model to identify gaps, validate signals, and challenge conventional positioning.
Board Governance and Audit Committee Intelligence — Research on oversight effectiveness, emerging risk response gaps, audit committee workload challenges, and the disconnect between risk reporting and executive action.
M&A and Strategic Alliance Analysis — Same-week analysis of acquisitions, partnerships, and PE investment moves reshaping the IRM competitive landscape, with implications for buyers, vendors, and investors.
Regulatory, ESG, and Sustainability Risk — Research on how evolving regulatory frameworks (SEC cyber disclosure, EU CSRD/CSDDD, AI regulation) affect enterprise risk programs and technology requirements.
IRM Navigator™ Market Intelligence — Strategic previews and deep dives from the IRM Navigator Model, the only independent model built specifically to evaluate integrated risk management maturity and vendor alignment.
Cyber Risk, Insurance, and Third-Party Risk — Analysis of cyber risk quantification, insurance market dynamics, and the convergence of third-party risk management into enterprise IRM programs.
Subscribe to get access now
The RTJ Bridge is an independent IRM research platform published by Wheelhouse Advisors. Subscribers receive ongoing access to vendor competitive assessments, AI disruption analysis, M&A and partnership impact research, and IRM Navigator™ market intelligence. This is the only research platform built and led by the analyst who created the Integrated Risk Management category, a market now valued at over $61 billion and projected to reach $133 billion by 2031.
Diligent’s Cyber Risk Report Brings Real-Time Threat Intelligence to the Boardroom
As the RSA Conference 2025 concludes, one of the final—but potentially far-reaching—announcements came from Diligent, the board-focused GRC software provider. On April 29, the company revealed its new Cyber Risk Report, delivered via the Diligent One platform and developed in partnership with Cloudflare and Qualys.
The announcement addresses a longstanding IRM challenge: effectively communicating cybersecurity risk to non-technical decision-makers. Diligent’s approach combines real-time threat intelligence (Cloudflare), risk surface scoring (Qualys), and executive-facing reporting tools—all within a single, continuously updating report format.
Rather than expanding detection capabilities or technical automation, this product aims to improve the interpretation and presentation of cyber risk at the board level.
ServiceNow’s Risk Expansion: What the CIMCON Partnership Reveals About the Future of IRM
On the final day of the RSA Conference 2025, ServiceNow unveiled a strategic partnership with CIMCON Software. This announcement may appear modest at first glance, but it has profound implications for the future of integrated risk management.
Integrating CIMCON’s technology into ServiceNow’s IRM platform extends its reach into two complex and under-managed domains: End User Computing (EUC) and AI model risk. Both represent decentralized, often undocumented elements of the modern digital enterprise. Historically, these domains have eluded traditional GRC platforms—falling outside structured risk workflows and beyond the reach of legacy tooling.
With this move, ServiceNow is not simply expanding features. It is expanding the definition of what an IRM platform must be.
AuditBoard’s Connected Risk Strategy: Strategic Evolution or History Repeating Itself?
On Day Two of RSA Conference 2025, AuditBoard presented a series of announcements intended to reposition the company well beyond its audit origins. Among them, a brand refresh with a new design language, the debut of an AI governance module, and the launch of a regulatory compliance platform called RegComply. These moves suggest an ambition to reframe AuditBoard as a broader platform for managing risk—beyond audit and into what it describes as “connected risk.”
But as competitors at RSA unveil agent-powered and AI-native capabilities, AuditBoard’s expansion strategy raises an important question:
Is this a strategic evolution—or is history repeating itself?
Safe Security’s Autonomous TPRM Heralds the Start of the Autonomous IRM Era
At the RSA Conference 2025, Safe Security unveiled its new Autonomous TPRM platform, positioning it as the industry’s first fully autonomous third-party risk management solution powered by specialized AI agents.
The solution automates third-party risk assessments, continuous monitoring, and vendor lifecycle management with minimal human intervention. It promises greater scalability, speed, and consistency in managing third-party ecosystems, which have historically been plagued by fragmentation, high administrative overhead, and compliance exposure.
While Safe Security’s announcement is significant, it also signals something larger:
The risk management industry is beginning to operationalize the first phase of Autonomous Integrated Risk Management (Autonomous IRM).