Andrew Martinez: AI tools speed work

Andrew Martinez’s May 17 thread on X focused on a narrow claim: newer AI tools are making cybersecurity workers faster, not obsolete. He pointed to recent Claude features as examples of software that can compress routine security work, especially where analysts spend time reading, sorting and documenting. Martinez argued that the practical change for security teams is not the disappearance of skilled roles, but a shift in which skills matter most. Anthropic’s own recent security messaging lines up with that framing. In April, the company said AI is changing the speed at which vulnerabilities are found and exploited, and published recommendations for defenders preparing for “AI-accelerated offense.” In February, Anthropic also introduced Claude Code Security in research preview, describing it as a tool for scanning code, finding vulnerabilities and suggesting patches. ### Where does Martinez say AI is actually saving time? Martinez’s thread described AI as most useful in the parts of security work that are repetitive but still cognitively heavy: analysis, triage and documentation. (claude.com) That matches the way many security teams already work, where large amounts of time go to reviewing alerts, summarizing findings, drafting tickets, writing reports and translating technical details for other teams. Anthropic’s public guidance uses similar language about speed. (cybermagazine.com) The company said AI is reducing the time needed to discover and exploit vulnerabilities, and urged organizations to tighten defenses accordingly. If defenders are operating in a faster threat environment, tools that shorten internal review and reporting cycles become more valuable. ### Why doesn’t that amount to replacement? Martinez’s argument rests on a distinction between producing output and exercising judgment. A model can generate a draft incident summary or suggest a vulnerability explanation, but it does not decide whether evidence is complete, whether a finding is material, or whether a response action is safe in a live environment. (claude.com) Anthropic’s own security work underscores that these systems are being positioned as accelerators inside human workflows, not as standalone substitutes for expertise. Its Claude Code Security preview was described as a way to help find and patch flaws, while its April guidance focused on how organizations should adapt security programs as AI changes attacker and defender speed. ### Which skills become more important if the routine work gets faster? Martinez said the shift is toward orchestration and judgment. In practice, that means knowing how to frame a task well, verify outputs, combine model results with internal context and decide when the model is wrong or incomplete. That emphasis is consistent with the broader direction of Anthropic’s security releases. The company’s red-team site said in April that Claude Mythos Preview showed strong capabilities on computer security tasks, while its enterprise-facing products and guidance have focused on how defenders can use AI without treating the model as an autonomous authority. (cybermagazine.com) ### What does this look like inside a security team? A security analyst using AI for first-pass triage may get to a plausible summary faster, but a senior practitioner still has to validate scope, confidence and business impact. A threat hunter may use AI to cluster evidence or draft hypotheses, but still needs to test those hypotheses against telemetry and adversary tradecraft. A security engineer may use AI to produce documentation or patch suggestions, but still owns implementation and risk. (red.anthropic.com) Anthropic’s February preview for Claude Code Security offered one concrete example on the engineering side: AI-assisted vulnerability discovery and patch suggestions in codebases. Martinez’s point extends that logic to adjacent workflows where the bottleneck is not writing code alone, but processing information. ### What should readers watch next? Anthropic’s April security guidance and its Claude Code Security rollout are the most concrete public markers for how these workflows are developing. The company said more of the world’s code is likely to be scanned by AI as models improve, and its April recommendations were aimed at organizations adjusting to faster offensive and defensive cycles. (cybermagazine.com) For security teams, the next useful evidence will come from product releases, enterprise deployments and practitioner reports that show whether AI tools consistently reduce time in triage, reporting and remediation without lowering accuracy. Martinez’s thread argued that the work is speeding up; those implementation details will show how far that claim holds in production. (cybermagazine.com)