Sensei agentic AI reaches new heights of safe artificial intelligence in cybersecurity

DefectDojo, the leader in scalable security, unified vulnerability management and DevSecOps, today announced DefectDojo Sensei, an AI agent built to be the ultimate cybersecurity consultant. Sensei is the first super-intelligent agent of its kind in cybersecurity, leveraging self-training evolution algorithms to offer groundbreaking performance while also remaining self-contained to eliminate the common risks associated with using AI in cybersecurity.

AI adoption in the cybersecurity industry is on the rise. This summer, ISC2 found 30% of surveyed professionals are using AI tools in their operations, with 42% in early stages of implementation such as testing. However, products currently on the market primarily rely on third-party services and technology from providers such as OpenAI and Anthropic. If those third parties experience a security breach, an organization using those services is breached by proxy, putting their data at serious risk of exploitation. DefectDojo built Sensei from the ground up over the course of three years to completely mitigate this concern, ensuring customers do not have to trust any third party with their security data.

“Sensei is the single most intelligent operator in security, agent or human, and it is only just entering alpha availability. We’ve seen Sensei accurately prioritize risks, offer recommendations to improve a security posture, pick out the best tools for unique security challenges and recommend training to prevent vulnerabilities from ever even being created,” said Greg Anderson, CEO and founder, DefectDojo. “Sensei can transform any security professional into a cybersecurity master within minutes.”

Early customers include companies in the defense and pharmaceutical industries, both of which deal with exceptionally sensitive data on a regular basis. Sensei has not only met, but exceeded their expectations for both efficacy and data security.

Sensei Features

Sensei can answer any question about a cybersecurity program managed through DefectDojo. With natural language processing (NLP) capabilities, professionals at any level can draw on Sensei’s deep intelligence to instantly answer questions or prepare reports and recommendations on some of the toughest challenges in cybersecurity.

Sensei’s capabilities include:

• Self-training and self-improving through evolution algorithms, rather than reinforced learning, Sensei offers super-intelligence in an industry first

• Generating tool recommendations for new security issues, complete program coverage, or unique challenges

• Analyzing current tools in use and recommending which to keep or remove

• Comparing data on logged vulnerabilities to provide a quick overview of the current conditions of a cybersecurity program or deeper risk and prevention insights

• Creating and suggesting customer-specific KPIs mapped to improving key metrics

• Summarizing and explaining key findings or vulnerabilities

• Keeping data secure by staying completely within the DefectDojo environment, whether via SaaS or self-hosting

• Reducing costs and technical hurdles by not requiring additional vendor relationships, allowing even smaller enterprises to affordably capitalize on AI innovation

• Generating reports based on compliance standards, including ISO-27001 or the OWASP Top 10

Sensei Availability

DefectDojo will first showcase Sensei at Booth G14 at the OWASP 2025 Global AppSec US conference in Washington, DC, taking place November 3-7. In addition, DefectDojo co-founder Matt Tesauro will provide an overview of the DefectDojo OWASP project on November 6 at 11 a.m. in the Mint Room. At 1:15 p.m. on November 6, Tesauro will also lead an interactive demo of DefectDojo in the Senate Room. For more details on the event, visit the OWASP website.

Sensei is currently in alpha testing and is anticipated to launch into general availability by the end of 2025.

About DefectDojo

DefectDojo is the engine that drives DevSecOps, providing an open, scalable platform that connects security strategy to execution. By aggregating data from any security tool, automating manual processes, and delivering AI-powered insights, DefectDojo empowers organizations to have a unified view of security posture, automate operations to increase productivity and improve decision-making. For more information, visit defectdojo.com or follow us on LinkedIn or GitHub.

View source version on businesswire.com: https://www.businesswire.com/news/home/20251104045746/en/

Sensei is the single most intelligent operator in security, agent or human, and it is only just entering alpha availability.