We believe recognition highlights the company’s vision and innovation in Penetration Testing as a Service (PTaaS)
MINNEAPOLIS, Sept. 10, 2025 – NetSPI®, the market leader in penetration testing, has been named a Sample Vendor in the Penetration Testing as a Service segment of the Gartner Hype Cycle for Application Security, 2025. In our view, this recognition highlights NetSPI’s innovative approach to transforming traditional penetration testing into a continuous, scalable security solution for modern development practices.
PTaaS is gaining traction as an essential cybersecurity capability, enabling organizations to meet the dynamic demands of cloud-first architectures, complex digital landscapes, and accelerated development cycles. Unlike periodic assessments, PTaaS delivers continuous testing throughout the software development lifecycle, helping enterprises proactively address security risks.
NetSPI bridges the gap between traditional penetration testing and the ongoing demands of DevSecOps. By combining automated testing with expert human analysis, it provides real-time vulnerability insights that enable faster remediation. Key benefits include seamless integration with development workflows, scalable testing capabilities, and actionable insights, all while maintaining the rigor of tried-and-true penetration testing.
“At NetSPI, we’re known for driving the evolution of penetration testing forward,” said Aaron Shilts, President and CEO of NetSPI. “This change doesn’t happen overnight, but over two plus decades of focus on penetration testing. For us, this recognition from Gartner recognizes our commitment to delivering innovative solutions that help organizations stay ahead of evolving threats.”
Amid trends such as expanding attack surfaces due to cloud adoption, AI-driven technologies, and third-party integrations, PTaaS has become a strategic imperative to stay secure. We believe NetSPI’s recognition underscores its role in helping enterprises achieve stronger security outcomes while balancing speed, agility, and efficiency. For organizations seeking effective, scalable application security, PTaaS has proven to be more than a trend—it’s a must-have capability.
Gartner, Hype Cycle for Application Security, 2025, Dionisio Zumerle, 22 July 2025
Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally, and HYPE CYCLE is a registered trademark of Gartner, Inc. and/or its affiliates and are used herein with permission. All rights reserved.
This graphic was published by Gartner, Inc. as part of a larger research document and should be evaluated in the context of the entire document. The Gartner document is available upon request from NetSPI.
About NetSPI
NetSPI® pioneered Penetration Testing as a Service (PTaaS) with its AI-powered platform supported by more than 350 in-house cybersecurity experts. Specializing in 50+ pentest types, attack surface visibility, vulnerability prioritization, and attack simulation, NetSPI delivers security testing with unprecedented clarity, speed, and scale. Trusted by 90% of the top 10 U.S. banks and many Fortune 500 companies, NetSPI sets the standard for modern AI-driven pentesting. Founded in 2001 and headquartered in Minneapolis, MN, NetSPI is available on the AWS Marketplace. Follow us on LinkedIn and X.
