New White House directive reinforces the need for AI-enabled, continuously validated security across federal networks and critical infrastructure
REDWOOD CITY, Calif.—June 9, 2026—Synack, the AI + human penetration testing platform, today highlighted how its FedRAMP Moderate Authorized PTaaS platform and Sara AI Pentesting align with the cybersecurity priorities outlined in the White House’s new Executive Order, “Promoting Advanced Artificial Intelligence Innovation and Security.” The order introduces a voluntary framework for testing frontier AI models before public release—and separately directs federal agencies to accelerate AI-enabled cyber defense, expand access to advanced cybersecurity tools, and coordinate vulnerability discovery and remediation at scale. Both priorities reflect a broader federal push to ensure AI is deployed securely. Synack already supports that mission for federal customers, including the majority of cabinet-level agencies.
Scaling Defenses to Match AI-Era Threats
The Executive Order directs the Cybersecurity and Infrastructure Security Agency (CISA) to establish or expand federal programs that enhance AI-enabled defensive cybersecurity tools to match the speed and scale of evolving threats. Sara AI Pentesting automates reconnaissance, attack surface mapping, and initial exploits at machine speed, while the Synack Red Team (SRT)—a globally vetted community of elite ethical hackers—validates what is real, exploitable, and relevant to the mission. This combination of agentic AI and human expertise enables federal agencies to test more frequently and cover more attack surface than either approach can achieve alone. AI finds more. Humans prove what matters.
“This Executive Order sends a clear signal: periodic testing and automated scanning alone are no longer enough to keep pace with AI-era threats,” said Jay Kaplan, CEO and Co-founder, Synack. “Federal security teams need continuous validation, AI-enabled scale, and human expertise to determine what is actually exploitable. That is exactly the model we have been building toward for 13 years, and what we deliver to federal customers today through our FedRAMP Moderate Authorized PTaaS platform.”
Securing Critical Infrastructure
As part of this order, CISA will facilitate access to cybersecurity services for operators of critical infrastructure—including rural hospitals, community banks, and local utilities. Synack has spent 13 years securing some of the most sensitive assets in these sectors, from the F-15’s Trusted Aircraft Information Download Station (TADS) to remote elections technology for Democracy Live. Synack’s continuous testing model ensures findings are validated and actionable.
Continuous Vulnerability Discovery for Federal Compliance
The Executive Order establishes a new AI cybersecurity clearinghouse to coordinate vulnerability scanning, validate findings, and prioritize remediation across federal networks and critical infrastructure—and directs the Office of Management and Budget (OMB) to identify grant funding for advanced AI vulnerability detection. Synack delivers precisely this model of continuous security validation. As documented in the 2026 State of Vulnerabilities Report, Synack tested for React2Shell across customer assessments—surfacing zero-day exposure at a frequency and scale that periodic testing cannot match.
As the Executive Order’s 30- and 60-day implementation timelines begin, federal agencies and critical infrastructure operators face real urgency to modernize their security testing programs and remediation process. Synack is ready to help them meet these mandates today. Schedule a readiness assessment at synack.com.
