Why Your Vulnerability Backlog Will Never Get Fixed (And How AI Changes That)

John & Rocky Giglio | Jun 10, 2026 min read

Security Bros - Episode 7 - Why Your Vulnerability Backlog Will Never Get Fixed (And How AI Changes That)

Watch Now on YouTube

62% of cloud security incidents come from vulnerabilities your team already knew about. The problem isn’t visibility. It’s remediation. AI is changing that – fast.

This week, Rocky and John sit down with Snir Ben Shimol, CEO of Zest Security, to break down why cloud vulnerability remediation is still one of the biggest unsolved problems in security and how autonomous AI agents are finally making it solvable. We cover the 30-to-90-day remediation window, why only 1-2% of vulnerabilities are actually exploitable in your environment, and how Zest’s platform shrinks a backlog of 100,000 vulnerabilities by 70% in the first week – without a single human in the loop.

If you’re running a CSPM, drowning in vulnerability backlogs, or wondering what practical AI in security actually looks like (not just marketing slides), this episode is for you.

You can subscribe on your favorite app. We are on Spotify, Apple Podcasts, and YouTube. We recommend YouTube as we will have demos and such fairly regularly so will be best to consume there. We will do our best to describe what we are doing or seeing so if you are in the car you can keep your eyes on the road.

Regardless of where you tune in, don’t forget to like and subscribe!

Watch on YouTube

Spotify