California-based software testing provider Cobalt has rolled out a suite of updates to its Offensive Security Platform, with a strong emphasis on making pentesting faster and more integrated into software development and security operations, the company shared.
At the heart of the rollout is a redesigned pentest launch and enhanced reporting features that aim to improve usability, reduce remediation friction, and build greater trust in test outcomes, following feedback from many of its financial services clients.
“These innovations mark the next chapter in the evolution of offensive security services,” explained Washington D.C.-based Jason Lamar, SVP of Product at Cobalt.
Offensive security services in software are tools and frameworks used to proactively identify vulnerabilities in systems, networks, and applications by simulating real-world attack scenarios.
“So we are building toward a future where pentesting is continuous, deeply integrated into development workflows, and backed by data that drives real security outcomes, not just compliance,” he added.
The platform updates enable users to initiate a pentest in minutes through a more intuitive ordering process.
Customers can select from predefined pentest types, tailor their requirements, including the option to schedule debrief calls, and kick off the process with the simplicity of placing a food order, Lamar said.
He noted the goal is to make pentesting “as simple as ordering a pizza.”
“We are building toward a future where pentesting is backed by data that drives real security outcomes, not just compliance.”
– Jason Lamar
Beyond usability, the updates focus on increasing visibility and actionable outcomes from tests.
Asked how and why it makes the platform different from its competitors, Lamar said it includes real-time collaboration with testers, continuous scanning, and improved integration into remediation workflows.
Also, a new Coverage Checklist in final pentest reports links findings directly to test activities, offering clearer insight into testing methodology and scope.
For teams managing recurring issues, Cobalt introduced a configuration option that automatically associates previously reported vulnerabilities with existing tracking tickets or generates new ones as needed — streamlining the remediation lifecycle.
According to Lamar, the long-term vision for the platform is to make pentesting a continuous and deeply embedded component of agile development and DevSecOps processes.
“To redefine what it means to test smarter, not harder,” he concluded.
THIS JULY
NEW EVENT
Why not become a QA Financial subscriber?
It’s entirely FREE
* Receive our weekly newsletter every Wednesday * Get priority invitations to our Forum events *
REGULATION & COMPLIANCE
Looking for more news on regulations and compliance requirements driving developments in software quality engineering at financial firms? Visit our dedicated Regulation & Compliance page here.
READ MORE
- Why real-time monitoring and scenario testing are becoming core QA disciplines
- BankDhofar takes an automated approach to strengthen QA
- Banks warned AI still fails on real-world software testing tasks
- SEC’s AI emphasis drives new QA and testing imperatives for US banks
- Inside the chaos: The new reliability discipline reshaping banking QA
WATCH NOW
