Cobalt Introduces Security Program Manager Service to Help Enterprises Scale Offensive Security Programs

Written by Cobalt | Mar 19, 2026 12:00:00 PM

New service provides a dedicated partner to manage pentesting operations, coordinate remediation, and translate security findings into business intelligence

Offloads pentest operations: manages scheduling, coordination, and remediation tracking so internal teams can focus on higher-value security work
Improves visibility and coverage: maintains asset inventory and aligns testing with business priorities to eliminate security blind spots
Translates security into business impact: turns findings into executive-ready insights, drives remediation, and integrates into dev workflows to accelerate secure innovation

SAN FRANCISCO--(BUSINESS WIRE) -- RSA Conference -- Cobalt, the pioneer of penetration testing as a service (PTaaS) and a leading provider of human-led, AI-powered offensive security solutions, today announced the launch of its Security Program Manager service, designed to help enterprises operationalize and scale offensive security programs. Attendees of the RSA Conference can learn more about these new capabilities by visiting the Cobalt team at Booth #N4519 at the Moscone Conference Center.

As organizations expand their security testing efforts across applications, APIs, cloud infrastructure, and emerging technologies, many security teams struggle with a growing gap between strategic security objectives and day-to-day execution. Fragmented oversight, engineering silos, and the challenge of translating technical vulnerability data into business-level insights can slow remediation efforts and reduce the effectiveness of offensive security programs.

The Cobalt Security Program Manager addresses this challenge by providing organizations with a dedicated expert who acts as an extension of the internal security team. Security Program Managers oversee the logistics of enterprise-scale pentesting programs, coordinate testing schedules across development teams, and ensure remediation workflows align with broader business and security goals.

“Offensive security programs are becoming more complex as attack surfaces expand and development cycles accelerate,” said Paul Zymba, Senior VP of Customer Success, Cobalt. “Our Security Program Manager is a service that helps organizations move beyond ad hoc pentesting by providing the operational leadership needed to run a programmatic, continuous security program that delivers measurable risk reduction.”

Security Program Managers help organizations streamline pentesting operations and ensure testing results translate into actionable improvements across the business. Key benefits of the service include:

Reclaim Your Team’s Time: Security Program Managers coordinate with development and engineering teams to schedule pentests, manage administrative logistics, and track remediation progress, reducing the operational burden on internal security teams.
Eliminate Security Blind Spots: By maintaining a comprehensive inventory of assets and aligning testing cadences with corporate security objectives, Security Program Managers ensure continuous visibility into the organization’s security posture.
Secure Executive Buy-In: Security Program Managers translate technical findings into strategic intelligence and performance metrics, helping security leaders demonstrate ROI and communicate risk reduction to executive stakeholders.
Accelerate Innovation Cycles: Cobalt integrates pentesting workflows with common development tools such as Jira, GitHub, and Slack, enabling organizations to embed security into development pipelines without disrupting engineering velocity.

The Security Program Manager builds on the broader Cobalt Offensive Security Platform, which combines automation, AI-driven intelligence, and expert-led testing to deliver offensive security at enterprise scale. By integrating automated reconnaissance, vulnerability discovery, and intelligence-driven triage with human-led testing, Cobalt enables organizations to run continuous security programs that evolve alongside their environments.

"Having a dedicated Security Program Manager ensures consistency across our pentesting program,” said Jamie Strickland, Security Analyst Lead at Patterson Companies. “They understand exactly what results we need and have become exceptionally nimble at managing tester and team member questions. By looping in the right internal stakeholders, they ensure our projects always stay on track. I know I can rely on them to handle complex questions and tailor communications for my internal audience."

Cobalt offensive security services span application, network, API, cloud, and emerging AI systems, and include capabilities such as web application pentesting, mobile testing, cloud configuration reviews, attack surface management, red teaming, and AI and LLM application testing. These services are delivered by the Cobalt Core, a global community of more than 500 vetted ethical hackers who average over 11 years of pentesting experience.

About Cobalt

Cobalt is the pioneer in pentesting as a service (PTaaS) and a leader in offensive security services. We are focused on combining talent and technology with speed, scalability, and expertise. Thousands of customers and hundreds of partners rely on the Cobalt Offensive Security Platform, along with 450+ trusted security experts, to find and fix vulnerabilities across their environments. By enabling faster pentest launches, real-time collaboration with pentesters, and seamless integration with remediation workflows, we help organizations identify critical issues and accelerate risk mitigation so they can operate fearlessly and innovate securely.

Cobalt maintains an outstanding NPS of 9.12, reflecting its dedication to customer satisfaction. Read our reviews on G2 to see why customers love us. More at https://www.cobalt.io/. Follow Cobalt on LinkedIn and X.

Media Contact:
Leslie Kesselring
Kesselring Communication for Cobalt
leslie@kesscomm.com

View full post