Home
/
Blog
/
Lema AI Recognized as a Sample Vendor in Two Gartner® Hype Cycle™ Reports

Lema AI Recognized as a Sample Vendor in Two Gartner® Hype Cycle™ Reports

|
Table of Contents

We are pleased to announce that Lema AI has been recognized as a Sample Vendor in two Gartner® Hype Cycle™ reports:

  • Hype Cycle for Cyber-Risk Management, 2026 (April 2026)
  • Hype Cycle for Cybersecurity Leadership, 2026 (May 2026)


Most third-party risk programs were built to answer one question at one moment: did the vendor pass the assessment? But a passed assessment is a snapshot and the data backs this up, third-party involvement now appears in 48% of all breaches, up 60% from the prior year, after already doubling the year before that. The relationship keeps changing after it, and that's where exposure actually lives. Access expands, integrations deepen, data moves to new places, and the vendor's own fourth parties shift underneath them. None of that shows up in the questionnaire you filed six months ago.

The volume problem makes this harder. Security teams are assessing more vendors than ever while the threat landscape moves faster than any annual review cycle can track. The result is programs that generate a lot of activity and not much signal: long queues of issues, most of which never become real risk, and a handful of genuine exposures buried somewhere in the backlog.

Lema treats third-party risk as something you monitor continuously, not certify once. The platform assesses vendors in their real business context, watches for changes in exposure after the assessment is done, and surfaces the risks that warrant a response instead of the issues that don't. The goal is to let teams spend their time on the relationships and exposures that actually carry risk, rather than working through findings that look identical on paper but differ enormously in what they mean for the business.

We believe Lema's inclusion as a Sample Vendor in these reports reflects a broader shift in third-party risk management, from periodic review toward continuous, intelligence-driven practice.

Source: Gartner Report, Hype Cycle for Cyber-Risk Management, 2026, By Deepti Gopal, Pedro Pablo Perea de Duenas, April 2026.

Gartner Report, Hype Cycle for Cybersecurity Leadership, 2026, By Charlie Winckless, Will Candrick, etc., May 2026.

Gartner and Hype Cycle are a trademark of Gartner, Inc. and/or its affiliates.

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

Key Takeaways

About the Author