Back to Blog

Gartner Names Prompt Security a Representative Vendor in Its Market Guide for AI Trust, Risk, and Security Management (AI TRiSM)

Prompt Security Team
February 28, 2025
‍Gartner has outlined the technical capabilities that constitute the emerging AI TRiSM market and has recognized Prompt Security as meeting growing demand.
On this Page
Loading nav...

Gartner has outlined the technical capabilities that constitute the emerging AI TRiSM market and has recognized Prompt Security as meeting growing demand.

Legacy controls alone cannot help enterprises address the security management risks associated with using and deploying AI. In light of this challenge, the AI Trust, Risk, and Security Management (AI TRiSM) market has emerged and is materializing quickly.

AI TRiSM solutions give enterprises visibility into all of the AI that their networks access and use. These solutions also enable organizations to do the following:

  • more safely use AI
  • ensure AI actions align with organizational intent
  • keep AI systems secure from malicious actors
  • protect confidential data and intellectual property 
  • comply with AI regulations, safety and security standards, and internal controls.

Prompt Security was recognized in Gartner’s AI TRiSM Market Guide as a representative vendor

At Prompt Security, we are proud to have been highlighted by Gartner in its AI TRiSM Market Guide as a representative TRiSM vendor. This market guide cites our products for employee GenAI use, homegrown GenAI applications, and AI code assistants as satisfying AI TRiSM demand. It notes these products’ capacity to help enterprises mitigate a wide range of risks and security threats throughout operations, and to carry out a broad range of AI governance functions, including comprehensive AI documentation and regulatory compliance monitoring.

Here are some of the capabilities that the report identifies as distinguishing Prompt Security from other vendors:

  • Comprehensive visibility, runtime monitoring and policy enforcement
  • Code scanning 
  • Using small language models, heuristics and other techniques to minimize latency and redact sensitive or inappropriate content in real time.

Layers of the AI TRiSM market – as outlined by Gartner 

Gartner defines the AI TRiSM market in terms of four layers of technical capabilities. Together, these layers support enterprise policies for security, data protection, and risk mitigation across the entire array of AI use cases.

Two of these layers – information governance and infrastructure & stack –  represent traditional technology focused on AI, while the other two – AI governance and AI runtime inspection and enforcement – are new to AI and are thus forming a distinct market segment:

  • AI governance provides a framework to manage an organization’s AI assets, instill confidence in AI performance, and ensure business outcomes.
  • AI runtime inspection and enforcement involves inspecting connections, processes, communications, inputs, and outputs to detect violations of policies and expected behavior, and taking appropriate action (blocking, autoremediating, or forwarding to humans or incident response systems for further investigation or consideration) when anomalies are found.
  • Information governance involves classifying, protecting, securing, and managing data throughout its life cycle. This layer is especially vital for properly limiting AI’s access permissions, securing an organization’s sensitive data, and complying with the EU AI Act and other AI regulations.
  • Infrastructure and stack encompasses the hardware, software, tools, libraries, data processing, and deployment environments supporting AI workloads, with a focus on solutions like API key management and confidential computing to secure AI data and processes.

Market recommendations

To manage AI trust, risk and security, Gartner recommends that AI leaders in organizations take the following actions:

  • Discover and inventory all AI used in the organization.
  • Revisit and implement data classification, protection, and access management across all enterprise information — both structured and unstructured — that can potentially be used by AI.
  • Work with legal and compliance experts to contractually define accountability and responsibility for unacceptable AI use or behavior in third-party embedded AI applications.
  • Evaluate and implement layered AI TRiSM technology to continuously support and enforce policies across all AI entities in use. 
  • Ensure independence from any single AI model provider to enable future flexibility as AI evolves and more advanced and cost-effective AI models become available.

Gartner also notes the importance of understanding which vendors can help reduce the burden of system integration and maintenance. To learn about how Prompt Security can help your organization ensure safe, reliable, trustworthy, and secure AI use, schedule a time to speak with us.

Share this post

Related posts

April 1, 2025

Secure ChatGPT Beyond the Browser: Prompt Security for ChatGPT on Desktop and WhatsApp

Prompt Security is now the first and only platform that can inspect ChatGPT both in the native desktop app (even with SSL pinning) and in WhatsApp (despite end-to-end encryption).
Read More
March 21, 2025

Case Study: Securing GenAI for Riskified – Fraud and Risk Intelligence

How Riskified secures GenAI use with Prompt Security, gaining visibility, control, and policy enforcement.
Read More
March 17, 2025

Why Browser Extensions Are the Only Scalable Way to Enable Safe GenAI Adoption — And Why Network Inspection Isn’t Enough

Browser extensions enable safe GenAI adoption at scale—real-time visibility, Shadow AI discovery, data redaction & user coaching. Learn why network tools fall short.
Read More
View all posts