DefectDojo Pioneers AI-Driven Cybersecurity with MCP Support, Ensuring Flexibility and Security
In an era where artificial intelligence (AI) is transforming industries, cybersecurity teams are increasingly adopting AI-powered tools to enhance their defenses. However, integrating AI into existing systems has often been a complex and risky endeavor—until now. DefectDojo, the leader in scalable security, unified vulnerability management, and DevSecOps, has announced the launch of Model Context Protocol (MCP) support in its premium offering, DefectDojo Pro. This groundbreaking feature empowers cybersecurity teams to adopt an AI-first approach to organizational security while maintaining flexibility and ensuring data security.
With MCP support, Dojo Pro users can now seamlessly connect the platform to any third-party or custom AI model that adheres to the protocol. This simple setup enables organizations to leverage AI capabilities tailored to their unique needs, creating a more effective and intelligent cybersecurity strategy. According to Takepoint Research, 80% of cybersecurity professionals believe the benefits of AI in industrial cybersecurity outweigh its risks. However, 68% of respondents identified system integration as a major challenge. The introduction of MCP addresses this hurdle head-on, streamlining AI integration and making it accessible for cybersecurity teams.
The open-source Model Context Protocol, developed by Anthropic and supported by industry giants like OpenAI, is a game-changing innovation. It is the first protocol to treat context-sharing between software and AI models like an API call, simplifying the flow of information and enabling seamless collaboration. Thanks to over a decade of development on its robust API and feature set, Dojo Pro is uniquely positioned to integrate AI through MCP. This integration allows any connected AI model to inherit Dojo Pro’s advanced capabilities, including intelligent deduplication, auto-triage of findings, vulnerability differentiation, and security posture scoring—all while retaining natural language processing for conversational interactions.
DefectDojo has taken additional measures to ensure the security and reliability of MCP implementation. Each deployment is customized on a per-customer basis, ensuring strict data separation and protecting sensitive information. Furthermore, MCP support will be rolled out in phases, beginning with Dojo Pro super users. Feedback from these early adopters will guide the broader rollout to other user roles, ensuring a smooth and secure transition for all customers.
“Make no mistake: MCP is a game changer for fully functional AI-enabled cybersecurity,” said Greg Anderson, CEO and founder of DefectDojo. “At DefectDojo, we prioritize delivering features that are meaningful, accurate, accessible, and, most importantly, safe. We only developed and released our MCP support after careful analysis to ensure we could do so in a way that safeguards our customers. We’re building a future of cybersecurity that preserves the flexibility our platform is known for while incorporating opt-in AI-forward features at scales the industry hasn’t seen yet. MCP is just our first step.”
This latest feature adds to DefectDojo’s growing list of innovations. Earlier this year, Dojo Pro became the first platform to unify Application Security (AppSec) and Security Operations Center (SOC) capabilities, introducing next-generation SOC features alongside its existing AppSec tools. These advancements are driven by direct customer feedback and real-world use cases, ensuring that DefectDojo remains at the forefront of addressing the evolving needs of cybersecurity professionals.
Built by and for cybersecurity experts, Dojo Pro is designed to scale efficiently for organizations of all sizes. The platform organizes vulnerability data into a single, easy-to-use interface, employing a risk-based approach to streamline security operations. Its diverse customer base includes Fortune 10 companies, international banks, government agencies, and independent consultants. Meanwhile, the open-source OWASP Edition of DefectDojo has been downloaded over 43 million times, solidifying its position as one of the fastest-growing open-source cybersecurity platforms on GitHub, as measured by the Open Source Security Index.
DefectDojo’s commitment to innovation and security makes it a trusted partner for organizations navigating the complexities of modern cybersecurity. By integrating MCP support, the platform not only enhances its AI capabilities but also sets a new standard for secure, flexible, and scalable cybersecurity solutions. As cyber threats continue to evolve, DefectDojo is leading the charge in empowering teams with the tools they need to stay ahead.
With the launch of MCP support, DefectDojo is paving the way for a future where AI-driven cybersecurity is both accessible and secure. By preserving the flexibility that has made the platform a favorite among cybersecurity professionals and incorporating cutting-edge AI features, DefectDojo is redefining what’s possible in the realm of organizational security. As the company continues to develop its roadmap, guided by customer insights and industry trends, it is clear that DefectDojo is not just keeping pace with the cybersecurity landscape—it’s shaping it.
About DefectDojo
DefectDojo is the engine that drives DevSecOps, providing an open, scalable platform that connects security strategy to execution. By aggregating data from any security tool, automating manual processes, and delivering AI-powered insights, DefectDojo empowers organizations to have a unified view of security posture, automate operations to increase productivity and improve decision-making. For more information, visit defectdojo.com or follow us on LinkedIn or GitHub.
