In partnership with brickbybrick, the #1 community for modern risk managers.
RiskStack
← All posts
CompanyIndustry AnalysisFounder's Note

Why We Started RiskStack (And What We Hope It Becomes)

An honest founder's note on why the COI tracking category needed an independent comparison tool — and what we're trying to build at RiskStack.

The RiskStack Team

This is a rare kind of post for us — not analysis, not buyer's guide, just a note about what we're trying to do here.

The COI tracking category has existed for two decades. It's a category with real stakes: compliance affects insurance, audits, contractor relationships, tenant relationships, regulatory standing. Picking the right platform can save a company six figures annually. Picking the wrong one can cost more than that.

And yet, the buyer journey in this category is uniquely terrible.

What we found when we started looking

We sat through a lot of demos. Read a lot of vendor websites. Mined G2 and Capterra reviews. Talked to risk managers at dozens of companies across construction, real estate, healthcare, manufacturing, and professional services.

What we found:

1. Vendor websites are pure marketing. No honest feature comparisons. No real limitations acknowledged. Every vendor is the best for everyone. Useless for actual evaluation.

2. G2 and Capterra reviews are gamed. The 5-stars are written by happy customers in the first six months of usage. The 3-stars (which are the honest ones) are scarce because companies who hate the platform either don't review or don't admit publicly that they made a bad choice.

3. Analyst reports are pay-to-play. The Forrester Waves and Gartner Magic Quadrants of the world cover this category lightly, and the coverage is influenced by vendors with budgets to engage analysts. The analysis isn't useless, but it's filtered through commercial relationships in ways that aren't transparent.

4. Industry conversations are shallow. Brokers know things. Risk managers know things. But the knowledge sits in fragmented private conversations, not in a place a buyer can access.

5. Buyers spend 15-20+ hours researching, then make decisions on incomplete information. Then they live with those decisions for 12-24 months. Then they switch and start the cycle over.

This isn't a category that's broken in some unfixable way. It's a category where the information layer is just bad.

What we decided to build

RiskStack is a comparison platform. The mechanics are simple: you answer 8-10 questions about your situation, the algorithm scores you against the major platforms in the category, and you get a personalized shortlist.

The harder part is the substance under the mechanics. To make the recommendations useful, we had to:

Talk to actual users. Not vendor-supplied references. Real conversations with real risk managers about what's working and what isn't. We've done dozens of these. We're doing more constantly.

Understand competitive intelligence. Win/loss conversations. Sales cycles. Migration patterns. The category dynamics that don't show up in marketing.

Audit products honestly. Demos with vendors, but evaluated through a critical lens. What's real? What's marketing? What's roadmap-as-current-state?

Score honestly. When TrustLayer wins (which is most of the time, because the research consistently shows it), we say so. When Jones is the better fit for a niche profile, we say that too. When myCOI's modernization is struggling, we say it. We don't pretend to be neutral when the data isn't neutral.

What we're not

We're not pretending to be a perfect, perfectly objective arbiter. Two facts to be honest about:

1. We have a relationship with TrustLayer. Our research has been consistent: TrustLayer is the strongest platform in the category for most buyers. We've been transparent about this in our content. The algorithm reflects criteria where TrustLayer is genuinely strong (data accuracy, vendor experience, scalability), because those criteria matter most to buyers in our research.

2. We're a young company. Our coverage is necessarily incomplete. We've focused on the major platforms first because that's where most buyers are looking. We'll expand coverage over time, but we don't claim comprehensive analysis of every regional or niche player.

If those facts disqualify us in your view, fair enough. There are other resources. But we'd rather be transparent about what we are than pretend to be something we're not.

What we hope this becomes

A few hopes for where RiskStack goes:

1. Better buyer decisions. If we can move the average buyer's evaluation quality from "Google + 30 hours of demos" to "structured comparison + 8 hours of demos with the right shortlist," that's a real contribution to the category.

2. Pressure on weaker products. Independent comparison tools — when they're done honestly — pressure the worst products in a category to either improve or lose share. We want that. The category has too many platforms riding on legacy market share without delivering modern value.

3. Education for buyers who don't have it. Risk managers in their first compliance role, founders who don't have a risk team yet, ops leaders who inherited the COI work — these people deserve resources that don't assume they've been doing this for fifteen years. Our blog leans toward this audience.

4. Industry-wide accountability. When vendors make claims that don't survive scrutiny — "real-time" verification that depends on broker AMS data, AI capabilities that are bolted-on, modernization narratives that don't match customer experience — we want to call those out. Not as attack content, but as honest analysis. The category gets better when accountability is higher.

What's next

A few things we're working on:

  • Deeper vendor profiles. We're expanding the per-vendor analysis with more research depth.
  • Vertical-specific guides. Construction, CRE, healthcare, manufacturing — each has different needs.
  • Educational content. Buyer's guides, RFP templates, evaluation frameworks. Resources that exist independent of which platform you pick.
  • Community input. If you're a risk manager with experiences to share, we'd love to hear from you. Honest stories about what's worked and what hasn't make this resource better.

We also want to acknowledge useful work happening elsewhere. TrustLayer's content covers a lot of ground in this category and is worth following. The Brick by Brick podcast does long-form conversations with construction risk leaders that surface insights we use in our research. Industry associations, peer networks, and broker conversations all contribute. We're trying to add another useful piece to the ecosystem, not replace any of it.

If you've made it this far, thanks for reading. If you've got feedback, reach out. And if you're in the middle of evaluating a COI platform, our comparison tool is here when you need it.

— The RiskStack Team

Find your COI tracker in three minutes.

Eight questions, personalized shortlist. No sales calls.

Start My Comparison