Give us your feedback
CyLock – Your Virtual Ethical Hacker
CyLock EVA – AI-enhanced Extended Vulnerability Assessment assistant for automated cybersecurity reporting
Use Case:
Integration of Large Language Models (LLMs) to generate automated high-quality summaries of vulnerability assessments reducing human effort and supporting accessibility of cybersecurity reporting for non-expert IT professionals.
Outcome:
Feasibility of integrating LLMs into cybersecurity tools successfully validated; AI-driven report summarization system defined and prototyped; Roadmap established for testing, ranking, and deploying the best LLM model; Increased automation of repetitive security audit tasks, reducing cost and time.
Ecosystem Support:
StairwAI program mentoring on technical and business planning; collaborative guidance from University of Rome “La Sapienza” for AI evaluation; structured Feasibility Plan implementation across 6 months.
AI Relevance:
CyLock demonstrates the value of AI for SMEs by: I) applying advanced LLMs to automate security tasks; II) providing explainable reports tailored to non-experts; III) reducing the skill gap barrier in cybersecurity; IV) enabling scalable risk assessments with reduced human input.
Summary:
CyLock, an Italian SME in the cybersecurity domain, aims to empower organizations—especially those with limited security expertise—to protect their digital infrastructures. With support from the StairwAI program, the team developed a Feasibility Plan to integrate Large Language Models into their Extended Vulnerability Assessment (EVA) process. The core innovation lies in automating the summarization of technical findings, allowing non-specialist IT staff to interpret vulnerabilities and follow step-by-step remediation procedures. The plan includes a six-month roadmap, beginning with onboarding AI experts, selecting suitable LLMs, testing their performance on accuracy and language adaptability, and deploying the best model into CyLock’s ecosystem. The solution stands out for its emphasis on accessibility: unlike traditional tools built solely for cybersecurity experts, CyLock EVA provides high-level explanations and actionable insights for general IT professionals. By replacing tedious reporting tasks with AI-driven summaries, the company accelerates its workflow and improves the quality of assessments. The business model targets a critical market gap—cyber protection for SMEs—and aligns with the broader mission of democratizing AI adoption in vital but underserved sectors like cybersecurity.
