Aaron Ott

Cybersecurity leader & AI security researcher — helping teams bridge security, AI, and resilience.

Read my latest work About me

I believe security should be human‑centered and AI‑resilient. That’s why I write, test, and share here.

Featured

Featured item

AI Security in 2025: What I Learned, and What I'll Be Watching for in 2026

Post

A weekend deep dive into three major AI security reports from 2025, what actually broke in the real world, and where security teams should focus their attention in 2026.

 Featured item

Pen Testing With Claude 4.5

Post

Claude 4.5 ran a 15 minute pen test on my lab, finding 21 real vulnerabilities — powerful but with notable blind spots like XSS.

 Featured item

When Do You Trust AI

Post

Exploring the 'trust thermometer' problem with AI: how to balance efficiency, verification, and judgment when working with inconsistent outputs.

About

I’m Aaron — OSCP/CISSP/CSSLP and an application‑security leader focused on building AI‑resilient systems. I write playbooks, ship tools, and help teams move fast without breaking everything important.

  • Focus areas: NIST CSF 2.0, AppSec leadership, AI security & resilience
  • Currently exploring: prompt‑injection labs, AI‑first DR, threat modeling for startups
  • Human stuff: dogs, hiking, and whiskey

More about me →

Aaron Ott

Latest writing

See all posts →