Synack Unveils Agentic AI with Human-in-the-Loop to Advance PTaaS Security

Synack, a leader in offensive security innovation, has launched Sara, its new agentic AI architecture. Sara enhances Synack’s Penetration Testing as a Service (PTaaS) platform with proactive, risk-based security validation. Using a human-in-the-loop approach, it combines autonomous AI capabilities with expert human analysis from the Synack Red Team. This enables organizations to reduce risk across their entire attack surface.

As cybercriminals increasingly use AI to scale and optimize attacks, defenders must respond with equal innovation. Sara represents an AI-versus-AI defense model, where AI-powered validation guided by human expertise counters machine-driven reconnaissance and threats. This approach delivers adaptive security while reducing false positives.

“Security teams now face AI-driven adversaries,” said Dr. Mark Kuhr, Synack co-founder and CTO. “With Sara’s agentic AI and human-in-the-loop model, we provide defenders with speed and intelligence to turn the tables.”

Next-Generation PTaaS Capabilities

Sara offers scalable and adaptable assessments of attack surface risk. The Sara Triage component, now available, autonomously validates exploitable vulnerabilities. Later this year, Sara Pentest will conduct objective-based penetration tests in collaboration with the Synack Red Team.

The human-in-the-loop design allows detection of logic flaws, chained exploits, and subtle vulnerabilities. Key benefits within the Synack platform include:

• Unified human and agent testing for centralized attack risk management.
• On-demand access to 1,500+ security researchers for AI-discovered findings.
• Full visibility into AI decision-making with proof of exploitability.
• Rapid attack surface coverage with flexible agent and human deployment.
• Comprehensive analytics to identify vulnerability root causes and guide remediation.

Synack’s AI-powered PTaaS platform supports Continuous Threat Exposure Management (CTEM) and aligns with global compliance standards. Its integrations with SIEM, EASM, vulnerability management, and ticketing systems enable real-time operational use of penetration testing results.

Stay informed on IT and data-driven innovations – visit IT Tech News today.

News Source: Prnewswire.com