Resolution Revolution: Turbocharging Security Ticketing Timelines
CVE/FIRST VulnCon 2025 · Main Stage
In an era defined by an exponential surge in software vulnerabilities, security teams are perpetually overwhelmed, struggling to manage an ever-increasing volume of security tickets with limited resources. The talk "Resolution Revolution: Turbocharging Security Ticketing Timelines" by Shrui Data Gupta and Joe from Adobe addresses this critical challenge head-on, presenting an innovative approach that leverages Artificial Intelligence (AI) to streamline vulnerability remediation workflows. Their presentation at VulnCon outlines Adobe's journey in developing an in-house AI-powered platform designed to accelerate resolution timelines, improve communication between security engineers and developers, and foster a more proactive security posture.
AI review
Adobe's two-person team presents a competent, honest account of building AI-assisted vulnerability triage tooling in a large enterprise environment. The talk earns points for intellectual honesty — they openly describe their pivot away from automated code-fix after it failed — and for grounding the work in real operational constraints. The four capabilities (fix recommendations, expert finder, best practices RAG, similar ticket clustering) are sensible and clearly production-deployed. What it isn't is novel research: RAG over a ticket corpus, LangChain orchestration with Azure OpenAI, and…