How AI Drives Shift to Continuous Pen Testing at Evinova

Adeeb Mahmood of Evinova and Shahar Peled of Terra Security Describe Transition Marianne Kolbasuk McGee (HealthInfoSec) • April 28, 2026

Continuous penetration testing is reshaping how organizations manage cyber risk in fast-moving cloud environments. That's the case at Evinova, a software-as-a-service unit of pharmaceutical giant AstraZeneca. The company replaced static annual tests with ongoing validation that aligns security with rapid software releases and evolving attack surfaces, said Adeeb Mahmood of Evinova and Shahar Peled of Terra Security.

See Also: AI Impersonation Is the New Arms Race-Is Your Workforce Ready?

Evinova supports clinical trials and patient engagement for customers that include pharmaceutical manufacturers and contract research organizations across global markets, said Mahmood, the company's head of cybersecurity.

"The style of pen testing we've been doing previously is your traditional annual point-in-time, look at your identity controls, your data security controls. But it's a point in time," Mahmood said ...