For those who have trialed an AI pentest solution: what was the single biggest gap you encountered?

1.7k views1 Upvote2 Comments

Sort by:

Chief Information Technology Officer in IT Services14 days ago

From my experience, the biggest gap with AI-driven pentest tools is depth of context. They’re good at scanning broad attack surfaces quickly, but they often miss nuanced issues—like business logic flaws, privilege escalation paths, or chained exploits across systems. Without human creativity to connect the dots, results risk being shallow. The question is how to best blend AI speed with human expertise for meaningful coverage.

CISO in Software15 days ago

Sometimes, they need more environmental context to target the right APIs and instances.

Content you might like

What cyber security metrics are CISOs of listed companies reporting to the audit committee of the supervisory board?

What is the importance of observability in any enterprise level application landscape having multiple applications being used for external and internal customers and deployed across multi-cloud deployments from on-prem to different clouds ?

Which of these certifications is important to you when hiring a software tester? Choose all that apply.

Certified Associate in Software Testing (CAST)29%

Certified Software Tester (CSTE)48%

ISTQB Foundation Level32%

ISTQB Agile Tester25%

Certification in a specific automation tool (i.e. Selenium, Ranorex)23%

Other certification5%

None8%

View Results

How Long Does Your Organization Retain Original Systems Logs Used to Filter SOX-related Actions Into A System That Requires Review of the Logs and Retains the Filtered Logs for Seven Years?

A. 90 Days
B. 365 Days
C. 3 years
D. 5 years
E. 7 years
F. Other

Does your organization consider those original system logs records subject to record retention requirements, or supporting information used to create the SOX records?

Thank you so much for sharing.

On average, how many phishing messages do you receive per week? (Includes email, SMS, voicemails, etc.)

0-111%

2-565%

6-1015%

11 or more7%

View Results

For those who have trialed an AI pentest solution: what was the single biggest gap you encountered?

Sort by:

Content you might like

What cyber security metrics are CISOs of listed companies reporting to the audit committee of the supervisory board?

What is the importance of observability in any enterprise level application landscape having multiple applications being used for external and internal customers and deployed across multi-cloud deployments from on-prem to different clouds ?

Which of these certifications is important to you when hiring a software tester? Choose all that apply.

On average, how many phishing messages do you receive per week? (Includes email, SMS, voicemails, etc.)

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

CrowdStrike Outage: Impact And Recovery

Generative AI and Software Engineering Teams: Adoption and Training

Generative AI and ChatGPT: Adoption and Use

DevSecOps: Strategies, Organizational Benefits and Challenges

2024 Software Engineering Priorities and Challenges

Take Your Insights On-the-Go