Technology
Ryan Hays, Global Head of Red Team at Citigroup and a recognized leader in information security, shared his perspective on the evolving landscape of cybersecurity in an in-depth conversation on NetSPI’s Agent of Influence podcast hosted by Nabil Hanan.
With over 23 years of cybersecurity and defense experience, including service in the U.S. Navy, Hays emphasized that while automation and AI-powered tools can enhance efficiency, true red teaming will always require human intelligence, creativity, and strategic judgment.
“You’re not going to fully automate red team ever,” Hays explained. “There’s too much human thought process and too many decision points that require judgment. Automation can support reconnaissance and repetitive tasks, but it cannot replace the cleverness and creativity of a skilled operator.”
According to Hays, automated red teaming is largely a marketing buzzword, often misunderstood by smaller organizations that assume such tools provide comprehensive protection. He warned that relying solely on automation can create a false sense of security.