Skip to main content

Understanding Agent Ops and Usage Tracking

This article will describe what an Agent Op is and how RedVeil tracks usage with Agent Ops

Updated over 2 weeks ago

What are Agent Ops?

Agent Ops are how RedVeil measures the amount of security testing work performed by our AI agents.

Each Agent Op represents a discrete execution cycle where an AI agent analyzes a target and performs security testing actions. Rather than tracking time spent, Agent Ops reflect actual testing effort and coverage.

Think of Agent Ops as the AI equivalent of tester effort - not hours on a clock.

Why does RedVeil use Agent Ops instead of hours like a traditional firm?

Traditional “hours” don’t accurately represent how AI-driven security testing works.

Our agents:

  • Work in parallel

  • Adjust depth dynamically based on complexity

  • Spend more effort where risk is higher

  • Operate independently of "wall-clock" time

Because of this, time-based tracking doesn’t map cleanly to real work.

Agent Ops provide a clearer, more accurate, and more transparent way to measure testing effort, regardless of how fast or slow a test completes.

Key Benefit

You’re paying for testing and analysis, not idle time.

How are Agent Ops consumed?

Agent Ops are consumed as tests run.

More complex systems or deeper testing naturally consume more Agent Ops, while simpler targets consume fewer.

You’ll always have visibility into:

  • How many Agent Ops your plan includes

  • How many Agent Ops have been used

  • How many Agent Ops remain

There are no hidden multipliers or time-based charges.

Are Agent Ops tied to how many vulnerabilities are found?

No

Agent Ops are not based on the number of vulnerabilities discovered.

They reflect the effort required to properly test and validate security, whether issues are found early or not. This ensures:

  • Consistent coverage

  • Meaningful results

  • No incentive for shallow testing

A system with no findings still requires thorough testing to confidently assess risk and identify any known exploitative paths.

Are there minimum or maximum Agent Ops per test?

Yes

RedVeil applies internal guardrails to ensure testing is both thorough and predictable.

These guardrails:

  • Enforce a minimum level of coverage so tests are meaningful

  • Prevent excessive or runaway testing

  • Ensure consistent depth across customers

The exact mechanics are handled automatically by the platform - you don’t need to manage them manually.

Can I purchase additional Agent Ops?

Yes!

If you need additional testing capacity, you can purchase Agent Ops refills at any time without changing plans. If you are on the Perimeter plan, you may wish to upgrade to our Full Coverage plan to maximize the value you get!

Summary

Agent Ops are a more accurate and transparent way to measure AI-driven security testing.

They align pricing with real testing effort, provide clear visibility into usage, and ensure every test meets RedVeil’s quality standards.

If you ever have questions about Agent Ops or your usage, our team is happy to help.

Related Articles
Can Agent Ops roll over?
Do I need an active subscription or can I purchase Agent Ops as needed?
Why did this test use more Agent Ops than another?
Are Agent Ops used if no vulnerabilities are found?
Keeping Track of Account Usage
Did this answer your question?