NOTE: Demo visuals use either blurred real data or synthetic placeholders to protect customer privacy.

Before this tool, SEs struggled to navigate SPM conversations. The product offers deep value, but its breadth made it hard to position clearly in live calls or proof-of-value sessions. Three consistent pain points emerged:

• Customers faced too much data to parse across their hybrid environments.

• SEs had no fast way to show which controls mapped to real attacks.

• Licensing limits (P1 vs. P2 vs. E5) created confusion on what was actually actionable.

Without structure, these conversations could drift into configuration details instead of focusing on outcomes. Parish saw that sales engineers needed a repeatable way to connect posture insights to security impact.

Parish’s Custom GPT links SPM, ATO, and Microsoft security data into one interface. It analyzes screenshots or exported tables from customer environments and recommends the top three risks to address first.

Key capabilities include:

• Parsing posture data and summarizing configuration gaps.
  
• Mapping findings to MITRE ATT&CK phases like persistence or exfiltration.
  
• Highlighting controls gated by license tiers.
  
• Generating visual diagrams showing enabled vs. missing protections.
  
• Comparing real ATO examples to illustrate “left of boom” versus “right of boom” defenses.

As Parish explained: “It’s a good way of helping SEs sell faster and speak in security terms customers already understand.”

The GPT draws on both Abnormal data and the MITRE framework, providing engineers with a bridge between product detail and business impact. It also integrates insights from earlier SE-built tools, such as quick-win tables, into a single workflow.

The result is faster preparation and more credible customer engagements. SEs can walk into a call with a prioritized list of risks and visuals showing how SPM fits with ATO or other modules.

Early outcomes include:

• One closed deal is attributed to the new workflow.

• Shorter cycles to position SPM in POVs.

• Easier collaboration with product and post-sales teams.

• Cross-sell potential to Customer Success for renewal and upsell discussions.

As more SEs adopt the GPT, it’s helping both presales and post-sales roles connect Abnormal’s products to measurable security improvements. The next step: extend the tool’s logic as SPM v2 evolves and the Microsoft Admin Center changes.

Early observers saw a clear opportunity. One noted that post-sales teams could use GPT to demonstrate ROI and identify upsell opportunities during renewals. Another pointed out that the approach improves consistency across customer-facing roles.

The tool’s quiet cultural impact is spreading: SEs are starting to view AI not as a demo gimmick but as part of their day-to-day selling practice. The next signal will be broader adoption across sales and customer success, tightening Abnormal’s story around security outcomes and customer value.