Zick Learn is an AI-powered micro-learning platform that delivers training through chat. Its customers are enterprises. Its product handles large volumes of employee data. Its competitive position depends on one thing: being the trustworthy choice.

Matteo, the founder and CEO, understood early that enterprise contracts hinge on security posture, and that posture has to be provable, not promised.

The validation gap Zick Learn could not afford

Enterprise customers ask hard questions. NIS2 compliance is non-negotiable. A single security lapse could end a flagship account and damage the brand for everyone else watching.

But Zick Learn is lean. Hiring an in-house pentester would have meant pulling resources from product. Annual pentests would have meant flying blind for 364 days a year, every release introducing new risk that nobody validated until the next snapshot.

Matteo needed continuous proof of what was exploitable, at startup economics.

Continuous testing, validated exposure, no headcount required

Zick Learn deployed Ethiack's platform to bring its entire stack under continuous attack surface management and autonomous pentesting. Hackian runs against new code and new assets the moment they ship, with under 0.5% false positives and over 20% impactful exploitable findings: the kind of precision that lets a small team act on every finding without drowning.

The result: Zick Learn closes enterprise deals faster, answers security questionnaires with proof, and meets EU regulatory expectations without growing the security team.

Building a startup that has to win enterprise contracts? Talk to us about Ethiack Continuous →