MetricStream provides governance, risk, and compliance (GRC) solutions built on a cloud-based platform. The company offers purpose-built products covering risk management, compliance, audit, cyber GRC, third-party risk, and resilience. Their platform uses a low-code/no-code architecture and incorporates AI capabilities through their AiSPIRE product, which uses GRC ontology-based knowledge graphs to analyze existing GRC and transactional data. The company's solutions address enterprise risk, cyber risk, third-party risk, audit, and regulatory compliance requirements. Their AI-infused workflows automate data capture, assessments, evidence gathering, and provide issue recommendations and evidence-based third-party risk ranking. The platform enables organizations to implement unified risk and control frameworks, with customers reporting control testing cost optimization of over 30%. MetricStream serves public and private companies across multiple industries, with over 1 million GRC professionals using their products in 35+ countries. Their cyber GRC solutions help organizations manage cybersecurity risk management programs, including incident response, control testing and monitoring, and compliance with regulations such as SEC cybersecurity rules for public companies. The company is headquartered in San Jose, California, with global operations.