BreachLock Earns 5-Year Gartner Recognition Streak for PTaaS — Expanding CTEM and AEV Footprint

Press Release

NEW YORK, July 1, 2025 // — For the fifth consecutive year, BreachLock, the global leader in offensive security, was named a sample vendor for Penetration Testing as a Service (PTaaS) in the 2025 Gartner® Hype Cycle™ for Security Operations.

This consistent Gartner recognition from 2021 today in its Hype Cycles for Security Operations is a reflection of BrechLock’s longstanding commitment to redefining penetration testing. In 2024, BreachLock also began appearing as a sample vendor for External Attack Surface Management (EASM) in addition to PTaaS, becoming one of very few sample vendors included in multiple categories within the offensive security space. Because BreachLock combines findings from ASM, PTaaS, and continuous penetration testing and red teaming into its unified platform, its PTaaS customers benefit from improved operational efficiency, greater transparency, and flexibility. Enterprise customers are enabled to optimize their security testing effectiveness with unparalleled speed, scalability, and ROI.

Commenting on this recognition, BreachLock Founder & CEO, Seemant Sehgal expressed, “It’s an honor to be recognized by Gartner five years in a row. This underscores BreachLock’s leadership in the PTaaS space and our growing impact on AEV and CTEM.” He added, “We’re proud to be among the few leveraging Gen AI to overcome speed and scalability challenges inherent to traditional penetration testing—bringing next-gen offensive security to modern evolving enterprises.”

Here are some key drivers, obstacles, and recommendations for Penetration Testing as a Service highlighted in the report and how BreachLock aligns:

• According to Gartner, “Gartner clients express an appetite to test on a more frequent basis to support their Continuous Threat Exposure Management (CTEM) initiatives.” Giving customers the capability to test what they want, when they want, at the frequency they want to align with their CTEM program is a core benefit of BreachLock’s PTaaS model.
• Gartner recommends that users “Favor hybrid scanning models that combine human analysis and automation to increase both effectiveness and efficiency.” BreachLock offers hybrid penetration testing, automating routine tasks like reporting and the identification of known vulnerabilities. This hybrid approach BreachLock’s in-house, certified pentesters focus on identifying and analyzing new vulnerabilities, taking business context into account for PTaaS customers.
• Gartner highlights, “PTaaS overlaps with adversarial exposure validation (AEV), which is an adjacent market, yet they are different in terms of adoption and operation. AEV focuses on continuous, real-world attack simulations, while PTaaS emphasizes human expertise and integration with development processes for on-demand or continuous testing,” naming it an obstacle. While PTaaS and AEV are at different levels of adoption and do overlap in ways, BreachLock offers both. In April 2025, BreachLock launched its generative AI-powered AEV solution to automate multistep, threat-intelligence-led attack scenarios. This solution was designed to help customers continuously uncover real exposures and prioritize their most critical risks. This launch positioned BreachLock as one of very few vendors offering both PTaaS and AEV.
• In the coming years, BreachLock will continue to innovate in the offensive security space to help enterprises gain even better control and visibility of their attack surface, reduce operational complexity, and strengthen their defenses where it’s most critical.
• Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner research organization and should not be construed as statements of fact. Gartner disclaims all warranties, express or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

About BreachLock

BreachLock is a global leader in offensive security, delivering scalable and continuous security testing. Trusted by global enterprises, BreachLock provides human-led and AI-powered attack surface management, penetration testing, red teaming, and adversarial exposure validation (AEV) services that help security teams stay ahead of adversaries. With a mission to make proactive security the new standard, BreachLock is shaping the future of cybersecurity through automation, data-driven intelligence, and expert-driven execution.

Know Your Risk. Contact BreachLock today!

Author



BreachLock Labs