The rise of LLMs and copilots has increased the output of software developers by 70% over the past year—and there's no reason to believe that number won't continue to increase. Combine the increased velocity with the fact that much of that code contains security flaws and that developers already outnumbered security personnel 100:1 in many organizations, and it's fair to say that security teams simply cannot keep up with the velocity of code being shipped.
"We'd need an army of AppSec professionals to keep up with the pace of newly introduced risks from AI-driven development," said Dudu Yosef, Director of Security at LinearB.
But Jit is trying to change that.
Jit has traditionally been known as an ASPM platform, which makes it a good place for AI-driven insights. ASPM platforms are known for their ability to collect signals from myriad sources and then leverage business context to prioritize which vulnerabilities actually matter based on risk and potential customer impact. Put another way—they already have a lot of data and a lot of context, which is what AI needs in order to be productive.
Today, the company brands itself as simply an Application Security Platform (AppSec). And now, they are unleashing AI agents to help with operations, compliance, risk assessments, and more.
"With the rise of AI coding assistants accelerating development speed—security teams simply can't keep up with the pace of newly introduced security issues," said Shai Horovitz, CEO of Jit. "Jit is building the Security Team of the future: a force of human and agentic AI working together. By embedding AI into our product security platform, we can not only centralize and contextualize all your security data but also connect it to your business priorities—enabling our agents to prioritize the risks that really matter to our customers."
The company claims that security teams that leverage Jit's AI agents will be able to eliminate hours of tedious analysis and manual tasks. These include:.
- AppSec Agent, which builds and continuously updates risk assessment and threat models for applications to flag critical risks while empowering developers to deliver more secure applications with contextual code review based on application architecture.
- Compliance Agent, which maps environments against specific security standards and regulations to build compliance reports on demand, with suggestions on how to close gaps.
- Security Ops Agent, which automates the triage and remediation processes by creating and following up with tickets, clearly communicating risks to relevant developers, and generating reports to track security posture.
It seems the world of software needs to create new AI to help solve the problems created by yesterday's AI. This is all moving so fast that it's hard to know what the situation will look like in a year. But suffice it to say that good security is proactive security. Security teams are always playing catch-up and reacting, so any tools in the arsenal that help close the gap are probably worth evaluating.
