SecureIQLab’s SOCx platform now spans ACFW v2.0, WAAP v5.0, XDR v1.0, and AI Security validation with AI-driven attacks
Key Facts:
-
SOCx integrates AI Security CyberRisk Validation as its fourth active methodology alongside ACFW v2.0, WAAP v5.0, and XDR v1.0
-
First purpose-built platform to validate AI security solutions using AI-driven validation
-
Nearly 20 vendors considered for AI Security validation; validation commences in April 2026
-
SOCx initially launched in May 2024; it now delivers validation across four security categories
-
Live platform demos available atย RSA Conference 2026ย (March 23โ26, San Francisco)
SecureIQLab announced that its SOCx AI-Driven Cloud Security Validation Platform has integrated AI Security CyberRisk Validation as its fourth active methodology, joining Advanced Cloud Firewalls (ACFW), Web Application and API Protection (WAAP v5.0), and Extended Detection and Response (XDR). SOCx is the first purpose-built platform to validate AI security solutions using AI-driven validation.
First platform to validate AI security with AI-driven attacks
Enterprise security vendors are shipping AI features faster than independent evaluation can keep pace. Vendor acquisitions bundle untested capabilities into consolidated platforms, and marketing claims multiply with every product refresh. Meanwhile, security leaders are making procurement decisions based on self-reported data with no independent baseline.
The threat is accelerating on multiple fronts. In mid-2025, researchers disclosed EchoLeak (CVE-2025-32711), a zero-click prompt injection attack against Microsoft 365 Copilot that exfiltrated enterprise data without user interaction. Weeks later, Russia-linked APT28 deployed LAMEHUG, the first publicly documented malware to integrate a live large language model for real-time command generation. Theย 2026 CrowdStrike Global Threat Reportย found an 89 percent year-over-year increase in attacks by AI-enabled adversaries, with the average eCrime breakout time falling to 29 minutes.
“Adversarial AI evolves on a cycle measured in minutes, not months. A validation platform that relies on static test scripts will fall behind before results are published,” said Ahmed Garhy, VP of Engineering, SecureIQLab. “SOCx uses AI-driven orchestration to generate, adapt, and sequence validation scenarios at the pace the threat landscape demands because the only way to measure AI security is with AI.”
SOCx deploys multi-model AI agents that reason across browser, API, and operating system layers, generating and executing validation scenarios in real time. The agents learn from each engagement, with captured test data refining future assessments across every validation cycle. Security teams interrogate results through a conversational interface, querying findings and investigating vulnerabilities in natural language. Every validation produces a complete audit trail with PII redaction, giving regulated enterprises compliance-ready evidence.
The platform validates individual security controls and full defense-in-depth stacks across all four active programs. Since its May 2024 launch, SOCx has powered the industry’s first “Secure-by-Design” WAAP public test report and SecureIQLab’s AI-focused ACFW validation, establishing the operational foundation now extended to AI Security.
Theย AI Security methodologyย evaluates solutions across 32 validation scenarios spanning three security layers (Input Security, Output Security, Retrieval Firewall), mapped to OWASP LLM Top 10 and MITRE ATLAS. The non-commissioned validation considers up to 20 vendors, with testing commencing April and results targeted ahead ofย Black Hat USA 2026.
The regulatory landscape reinforces the urgency. In the U.S., theย White House National Policy Framework for Artificial Intelligence, released this month, calls for “industry-led standards” rather than new federal regulation, positioning independent validation as the market’s own accountability mechanism. Theย EU AI Act’sย August 2, 2026 deadline requires organizations to demonstrate that high-risk AI systems have been independently evaluated. SOCx serves both models with audit-ready, versioned validation records.
Catch more CIO Insights:ย CIO as Orchestrator of Cross-Functional Digital Strategy
[To share your insights with us, please write toย psen@itechseries.com ]
