Latest news with #DojoPro
Yahoo
18 hours ago
- Business
- Yahoo
DefectDojo Enables AI-First Cybersecurity with MCP Support
Cybersecurity teams retain flexibility of using their AI model of choice and can remain confident that their data is secure AUSTIN, Texas, June 24, 2025--(BUSINESS WIRE)--DefectDojo, the leader in scalable security, unified vulnerability management and DevSecOps, today announced the launch of Model Context Protocol (MCP) support in DefectDojo Pro, providing cybersecurity teams the ability to safely take an AI-first approach to organizational security. Dojo Pro users can now connect the platform to any third-party or custom model that supports MCP to create a more effective cybersecurity AI with one simple setup. According to Takepoint Research, 80% of cybersecurity professionals thought that the benefits of AI usage in industrial cybersecurity outweighed its risks, but system integration was labeled a major challenge by 68% of respondents in the same survey. The open-source MCP, developed by Anthropic and backed by industry-leading companies like OpenAI, solves several major issues with incorporating AI into cybersecurity as the first protocol that treats context-sharing between software and AI like an API call. Thanks to over a decade of development of its various features and robust API, Dojo Pro is well-positioned to accommodate AI integration. With a now seamless flow of information between Dojo Pro and an AI model via an MCP connection, any model can now become as capable as Dojo Pro in intelligently deduplicating and auto-triaging findings, distinguishing between different vulnerabilities and providing insights into security posture scoring while retaining natural language processing capabilities for conversational interactions. DefectDojo's MCP support takes a number of additional precautions to strengthen the security infrastructure surrounding the protocol's implementation. Each MCP deployment is done on a per customer basis, ensuring the separation of data. The feature will also be rolled out in phases, starting with Dojo Pro super users. Based on feedback from these users, DefectDojo will continue to roll out MCP support to other Dojo Pro user-roles. "Make no mistake: MCP is a game changer for fully functional AI-enabled cybersecurity. At DefectDojo, however, we prioritize delivering features that are meaningful, accurate, accessible, and, most importantly, safe. We only developed and released our MCP after careful analysis to ensure we could do so in a safe way for our customers," said Greg Anderson, CEO and founder of DefectDojo. "We're building a future of cybersecurity that preserves the flexibility our platform is known for and incorporates opt-in AI-forward features at scales cybersecurity hasn't seen yet. MCP is just our first step." DefectDojo's MCP support represents another groundbreaking feature for the Dojo Pro platform. This spring, Dojo Pro became the first platform of its kind to unify AppSec and Security Operations Center (SOC) on one platform with the launch of next-gen SOC capabilities in addition to its AppSec capabilities. DefectDojo's roadmap, including SOC capabilities and the next AI-focused features in development, is informed by direct customer feedback and use cases. Built by and for cybersecurity professionals, Dojo Pro is designed to efficiently scale for the needs of organizations of any size and neatly organize vulnerability data into one easy-to-use platform with a risk-based approach. DefectDojo's customer base includes Fortune 10 companies, international banks and other financial institutions, government agencies, and solo consultants alike. The open-source OWASP Edition of the platform has been downloaded over 43 million times and is one of the fastest-growing open-source cybersecurity platforms on GitHub as measured by the Open Source Security Index. To learn more about DefectDojo and get started with either the OWASP Edition or Dojo Pro, contact hello@ About DefectDojo DefectDojo is the engine that drives DevSecOps, providing an open, scalable platform that connects security strategy to execution. By aggregating data from any security tool, automating manual processes, and delivering AI-powered insights, DefectDojo empowers organizations to have a unified view of security posture, automate operations to increase productivity and improve decision-making. For more information, visit or follow us on LinkedIn or GitHub. View source version on Contacts Media defectdojo@
Business Wire
18 hours ago
- Business
- Business Wire
DefectDojo Enables AI-First Cybersecurity with MCP Support
AUSTIN, Texas--(BUSINESS WIRE)-- DefectDojo, the leader in scalable security, unified vulnerability management and DevSecOps, today announced the launch of Model Context Protocol (MCP) support in DefectDojo Pro, providing cybersecurity teams the ability to safely take an AI-first approach to organizational security. Dojo Pro users can now connect the platform to any third-party or custom model that supports MCP to create a more effective cybersecurity AI with one simple setup. Make no mistake: MCP is a game changer for fully functional AI-enabled cybersecurity. According to Takepoint Research, 80% of cybersecurity professionals thought that the benefits of AI usage in industrial cybersecurity outweighed its risks, but system integration was labeled a major challenge by 68% of respondents in the same survey. The open-source MCP, developed by Anthropic and backed by industry-leading companies like OpenAI, solves several major issues with incorporating AI into cybersecurity as the first protocol that treats context-sharing between software and AI like an API call. Thanks to over a decade of development of its various features and robust API, Dojo Pro is well-positioned to accommodate AI integration. With a now seamless flow of information between Dojo Pro and an AI model via an MCP connection, any model can now become as capable as Dojo Pro in intelligently deduplicating and auto-triaging findings, distinguishing between different vulnerabilities and providing insights into security posture scoring while retaining natural language processing capabilities for conversational interactions. DefectDojo's MCP support takes a number of additional precautions to strengthen the security infrastructure surrounding the protocol's implementation. Each MCP deployment is done on a per customer basis, ensuring the separation of data. The feature will also be rolled out in phases, starting with Dojo Pro super users. Based on feedback from these users, DefectDojo will continue to roll out MCP support to other Dojo Pro user-roles. 'Make no mistake: MCP is a game changer for fully functional AI-enabled cybersecurity. At DefectDojo, however, we prioritize delivering features that are meaningful, accurate, accessible, and, most importantly, safe. We only developed and released our MCP after careful analysis to ensure we could do so in a safe way for our customers,' said Greg Anderson, CEO and founder of DefectDojo. 'We're building a future of cybersecurity that preserves the flexibility our platform is known for and incorporates opt-in AI-forward features at scales cybersecurity hasn't seen yet. MCP is just our first step.' DefectDojo's MCP support represents another groundbreaking feature for the Dojo Pro platform. This spring, Dojo Pro became the first platform of its kind to unify AppSec and Security Operations Center (SOC) on one platform with the launch of next-gen SOC capabilities in addition to its AppSec capabilities. DefectDojo's roadmap, including SOC capabilities and the next AI-focused features in development, is informed by direct customer feedback and use cases. Built by and for cybersecurity professionals, Dojo Pro is designed to efficiently scale for the needs of organizations of any size and neatly organize vulnerability data into one easy-to-use platform with a risk-based approach. DefectDojo's customer base includes Fortune 10 companies, international banks and other financial institutions, government agencies, and solo consultants alike. The open-source OWASP Edition of the platform has been downloaded over 43 million times and is one of the fastest-growing open-source cybersecurity platforms on GitHub as measured by the Open Source Security Index. To learn more about DefectDojo and get started with either the OWASP Edition or Dojo Pro, contact hello@ About DefectDojo DefectDojo is the engine that drives DevSecOps, providing an open, scalable platform that connects security strategy to execution. By aggregating data from any security tool, automating manual processes, and delivering AI-powered insights, DefectDojo empowers organizations to have a unified view of security posture, automate operations to increase productivity and improve decision-making. For more information, visit or follow us on LinkedIn or GitHub.
Yahoo
27-05-2025
- Business
- Yahoo
DefectDojo Introduces Industry-First Unified SOC & AppSec Platform
DefectDojo now accommodates the needs of multiple security teams with a single, unified view AUSTIN, Texas, May 27, 2025--(BUSINESS WIRE)--DefectDojo, the pioneer in scalable security, unified vulnerability management and DevSecOps, today announced the launch of their next-gen Security Operations Center (SOC) capabilities for DefectDojo Pro, which provides both SOC and AppSec professionals a unified platform for noise reduction and prioritization of SOC alerts and AppSec findings. As both SOC and AppSec teams attempt to cut through noisy data from a sprawling set of tools and sources, Dojo Pro now allows two security teams to work from the same platform in a way no other solution has offered to date. SOC teams, like their counterparts in AppSec, are facing a number of challenges that hinder their ability to effectively protect their organizations. A recent survey found that SOC teams receive approximately 500 investigation-worthy endpoint security alerts weekly, and investigating these alerts takes up to 65% of their time; in that same survey, 16% of SOC professionals said they only addressed 50-59% of their pipeline per week. In short, SOC teams do not have the time or the resources to effectively keep up with the constantly-evolving threat landscape and the deluge of associated data. Next-gen SOC builds on DefectDojo's previous efforts to simplify and streamline cybersecurity operations. SOC teams can now use Dojo Pro's machine learning algorithms to consolidate and remove duplicate findings, significantly cutting down the amount of data they must process and assess. They can also take advantage of DefectDojo's newly-released risk-based prioritization features, which more effectively assess risk by factoring in exploitability, reachability, revenue, potential compliance factors, user records and a number of other factors to help teams find their most pressing vulnerabilities and SOC alerts to respond more quickly. "DefectDojo has always prioritized meeting security teams where they are, providing them the flexible foundation to effectively manage their needs and making hypertechnical cybersecurity tools accessible. Unifying next-gen SOC and AppSec represents the culmination of all of our work to date and a major breakthrough in how different cybersecurity teams collaborate with each other," said Greg Anderson, CEO and founder of DefectDojo. "We aim to continue bringing our customers scalable solutions for today's most pressing cybersecurity issues." The next-gen SOC capabilities join a number of recently-launched features for the Dojo Pro platform, all of which are informed by direct customer feedback and use cases. These include the Rules Engine, which enables teams to customize rules to automatically manipulate, edit, enhance, add custom remediation advice, escalate, or de-escalate specific findings, all without significant human effort; the universal parser, allowing for data ingestion from any tool producing JSON or XML data; and next-generation prioritization evaluation. Built by and for cybersecurity professionals, Dojo Pro is designed to efficiently scale for the needs of organizations of any size and centralize vulnerability data into one easy-to-use platform. DefectDojo's customer base includes Fortune 10 companies, international banks, government agencies and solo consultants alike, and the open-source OWASP Edition of the platform has been downloaded over 43 million times. To learn more about DefectDojo and get started with either the OWASP Edition or Dojo Pro, contact hello@ About DefectDojo DefectDojo is the engine that drives DevSecOps, providing an open, scalable platform that connects security strategy to execution. By aggregating data from any security tool, automating manual processes, and delivering AI-powered insights, DefectDojo empowers organizations to have a unified view of security posture, automate operations to increase productivity and improve decision-making. For more information, visit or follow us on LinkedIn or GitHub. View source version on Contacts Media Contact defectdojo@ Sign in to access your portfolio
