ConnectSecure CEO On New AI Reports For Vulnerability Management: ‘Transparency And Privacy Are Non-Negotiable For Us’
‘Our mission has always been to make cybersecurity accessible for every SMB through the MSPs who protect them. These reports are part of that philosophy: clear, actionable and designed to show real progress, not just run another scan,’ says ConnectSecure CEO Peter Bellini.
ConnectSecure is taking a major leap forward in its mission to simplify cybersecurity for MSPs and SMBs with the launch of a tool aiming to help security teams slash manual work, prioritize high-impact threats and respond faster to emerging risks.
The AI reports for vulnerability management tool analyzes vulnerabilities in real time using established scoring systems, contextual asset tagging and intelligent automation. The result, ConnectSecure CEO Peter Bellini said, is a reporting experience that finally solves one of cybersecurity’s most chronic issues: noise.
“Vulnerability management has always been inherently noisy, every scan comes back with thousands of alerts, and MSPs get buried in them,” Bellini told CRN. “We didn’t want to just redesign reports, we wanted to fundamentally fix the problem. These new AI reports were built to cut through that noise and highlight what actually matters to the business.
“This isn’t about replacing human judgment with AI or creating black-box models you can’t explain,” he added. “We’re using proven scoring systems, responsible automation and clear context so MSPs can quickly see, ‘Here’s what to fix in the next 30, 60, 90 days, and here’s why.’”
And the launch aligns with the Tampa, Fla.-based vendor’s broader goal of democratizing cybersecurity for small and midsize businesses by delivering enterprise-grade tools for MSPs.
“Our mission has always been to make cybersecurity accessible for every SMB through the MSPs who protect them,” he said. “These reports are part of that philosophy: clear, actionable and designed to show real progress, not just run another scan.”
Tim Soper, security specialist at Escanaba, Michigan-based DS Tech, said the AI reporting feature is a “major step forward because it does simplify the process of turning complex vulnerability data into usable reports for both technical and non-technical clients.”
“ConnectSecure already offers one of the most robust reporting platforms, and this AI capability brings welcomed efficiency while keeping human oversight with human in the loop/review process to ensure accuracy,” told CRN in an email. “This represents a great foundation and I think that the importance of good security will grow in value alongside the expanding use of AI across the industry."
CRN spoke further with Bellini about the tool and how the vendor is further planning to implement AI across its tools.
Why launch the AI reports for vulnerability management tool at this time?
We’ve actually been working toward this for a couple of years, and honestly, it came down to necessity. Our partners have been asking us for a long time, ‘Hey, when are you going to update your reports? Can you make them more useful, more visual, more aligned to business conversations?’
Every vendor in the MSP space gets those same questions. You can have all the data in the world inside your app but when it comes to communicating it clearly to customers, reports are where the rubber meets the road.
We didn’t want to just push out another version that looked nicer, we wanted something that truly solved a problem. Vulnerability management is inherently noisy. A typical scan produces thousands of alerts, and that creates alert fatigue. These new AI reports were built to cut through that noise and help MSPs focus on what actually matters most to their clients.
How does it differ from traditional vulnerability scanning and reporting tools?
Traditional vulnerability scanning tools all follow the same model. You run a scan and you get back a long list of vulnerabilities across every device and application. I’ve never seen a single machine scan come back clean, and when you do that across an entire network you’re looking at thousands of findings.
What we’ve done differently is to prioritize based on what truly impacts the business. We combine CVSS (Common Vulnerability Scoring System), EPSS (Exploit Prediction Scoring System) and CISA’s (Cybersecurity and Infrastructure Security Agency) Known Exploited Vulnerabilities data, along with asset tagging that reflects what’s critical to a customer’s operations.
So instead of boiling the ocean, our system builds what we call an ‘action plan.’ It highlights, for example, the top 30 vulnerabilities actively being exploited in the wild or those on mission-critical systems like your accounting workstation or firewall. And to be clear, we’re not using AI to replace human judgment. We’re using proven scoring models and automation to help MSPs focus their time and resources on what truly matters each month.
How is the company using AI responsibly and transparently?
That’s a great question. One of the ways we ensure accuracy and transparency is by not over-relying on AI to make decisions we can’t explain. We use AI to assist and help generate insights and explanations, but the foundation of our prioritization is based on established, benchmarked systems like CVSS and EPSS. If a vulnerability scores a 9.0 CVSS and a 9.5 EPSS, that’s not an AI guess, that’s hard data. We also host all of this within our own environment. Nothing leaves our ecosystem. We maintain full SOC 2 compliance, so no sensitive data ever touches external models. Transparency and privacy are non-negotiable for us.
So how does this launch align with ConnectSecure’s broader mission?
Our mission is simple, to make cybersecurity accessible for every small and midsize business through the MSP channel. About half of the U.S. GDP is powered by SMBs, and the only scalable way to protect them is through managed service providers. Before ConnectSecure, most vulnerability management tools were built for enterprises and priced that way. We built ConnectSecure to be multi-tenant, MSP-first and affordable. That’s what allows MSPs to expand into cybersecurity services and protect the businesses that power our economy. These reports are part of that same philosophy, giving partners something clear, actionable and easy to share with customers who might not be technical but still need to see the value of their cybersecurity investment.
Where do you see AI making the biggest difference in cybersecurity over the next few years?
A lot of cybersecurity is about good hygiene: patching, updating, enforcing MFA, avoiding phishing. Those are repeatable processes and AI can absolutely help there. It’s not about replacing the SOC analyst or the penetration tester. It’s about ensuring that the basic things are done consistently and automatically. Think of it as AI helping businesses eat their cybersecurity vegetables. If we can automate hygiene and reduce human error, we make every organization stronger.
So what’s next for ConnectSecure and AI?
This is our first real foray into AI, and we’re really proud of it. We do have other AI projects underway, I can’t go into details yet but what I can say is that we’re going to stay disciplined. Our focus is on delivering features that solve real problems, not just chasing buzzwords. When we’re confident something adds measurable value, we’ll bring it to market.
What’s your message to MSPs about this new release?
In short, we listened. Partners have been asking for updated reporting for years and this is our answer. The reports are out now, they’re already getting great feedback, but this is just the beginning. We’ll continue to refine them based on what our partners tell us. The goal is to make these reports clear enough for business owners to understand and actionable enough for technicians to implement.
We don’t want to overwhelm clients with a sea of red and yellow charts, we want them to see progress. If an MSP can show a customer, ‘We took your security score from a D to a B in 90 days,’ that’s powerful. It helps them earn and keep business. And that’s what this is all about, empowering MSPs to demonstrate real value, not just run another scan.