Why AI Features Don't Equal Better Vulnerability Management

AI is becoming table stakes in vulnerability and exposure management. In this candid webinar conversation, Chris Ray, Field CTO at GigaOm, and Will Gorman, CTO and leader of AI initiatives at Nucleus Security, challenge the assumption that more AI automatically leads to better outcomes.

They break down where AI genuinely improves vulnerability and exposure management, and where it often falls short. The discussion focuses on practical use cases like prioritization, triage, and workflow automation, and calls out common failure modes such as amplifying bad data, obscuring ownership, or masking weak execution.

Key Moments

00:00 – AI Hype vs. Risk Reduction

01:18 – The “Infomercial Era” of AI

04:30 – Where AI Actually Delivers

06:06 – Where AI Breaks in the Enterprise

09:57 – Consumer vs. Enterprise AI

12:22 – AI as a Force Multiplier

15:15 – AI and Prioritization Strategy

24:14 – The Illusion of Progress

28:56 – Evaluating AI Claims

40:59 – AI Isn’t Your Strategy