Tag: strategy
-
Trump’s cyber strategy emphasizes offensive operations, deregulation, AI
Industry reaction and next steps: Industry reaction was broadly positive, though notably, many of the strongest endorsements came from cybersecurity firms likely to benefit from the strategy’s emphasis on AI adoption and expanded private-sector roles in national defense.Drew Bagley, chief privacy and policy officer at CrowdStrike, said in a statement, “This strategy addresses modern threats…
-
Can AI-driven security solutions fit small business budgets
Are Non-Human Identities the Missing Piece in Your Cybersecurity Strategy? What Are Non-Human Identities, and Why Are They Important? Have you ever considered the security implications of the digital identities and credentials your machines hold? The rise of Non-Human Identities (NHIs) is reshaping cybersecurity. These machine identities serve as essential components for securing modern digital……
-
How do Agentic AI systems enhance security frameworks
Can Agentic AI Innovate Security Frameworks for Non-Human Identities? Where organizations grapple with digital transformation, one question looms large: Can leveraging Agentic AI revolutionize how we manage security frameworks, particularly for Non-Human Identities (NHIs)? The integration of advanced AI solutions into cybersecurity strategies has become imperative. The Need for Reinventing Cybersecurity with Agentic AI Agentic……
-
TDL – Defense Before Offense: Leadership, Risk, and the Cost of Bad Decisions – Steven Elliott
From the Battlefield to the Boardroom: Lessons in Defense In the latest episode of The Defender’s Log, host David Redekop sits down with Steven Elliott, CFO of Adam Networks, to explore the surprising parallels between military operations, financial management, and cybersecurity. A Journey of Unpredictable Paths Elliott’s background is anything but linear. From a small…
-
Trump’s new cybersecurity strategy makes promises but lacks details
The administration vowed to increase the government’s use of AI for rapid cyber defense. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/white-house-trump-cybersecurity-strategy/814120/
-
The long-awaited Trump cyber strategy has arrived
The administration also released an executive order on cybercrime and fraud. First seen on cyberscoop.com Jump to article: cyberscoop.com/trump-cybersecurity-strategy/
-
Challenges and projects for the CISO in 2026
Tags: access, ai, authentication, automation, awareness, cisco, ciso, cloud, communications, control, credentials, cybersecurity, data, defense, detection, edr, email, encryption, endpoint, finance, framework, group, identity, intelligence, leak, mobile, network, service, soc, sophos, strategy, technology, trainingHazel DÃez (Banco Santander), Roberto Lara (Vodafone), Marijus Briedis (NordVPN), Ãlvaro Fernández (Sophos), and Ãngel Ortiz (Cisco). Banco Santander, Vodafone, NordVPN, Sophos y Cisco. Montaje: Foundry Against this backdrop, Cisco defines AI as “the fundamental technology that will set the cybersecurity agenda in 2026,” in the words of Ortiz, who refers to the company’s Integrated…
-
Backup strategies are working, and ransomware gangs are responding with data theft
Business email compromise (BEC) and funds transfer fraud combined for 58% of all cyber insurance claims filed in 2025, according to data from Coalition covering more than … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/03/06/cyber-claims-report-ransomware-gangs-data-theft/
-
Why Your Data Protection Program Should Be Policy-Based
Traditionally, data protection programs have been complex and difficult to manage. Without a consistent approach, gaps arise that can lead to data exposure or non-compliance. A more modern option is to centralize policy-based security. This strategy standardizes protections across environments. It also maintains productivity and reduces reliance on users to make the right security decisions.…
-
Why Your Data Protection Program Should Be Policy-Based
Traditionally, data protection programs have been complex and difficult to manage. Without a consistent approach, gaps arise that can lead to data exposure or non-compliance. A more modern option is to centralize policy-based security. This strategy standardizes protections across environments. It also maintains productivity and reduces reliance on users to make the right security decisions.…
-
Europa im Visier von Cyber-Identitätsdieben
Deutsche Unternehmen müssen sich warm anziehen: Sowohl staatliche als auch ‘private” Akteure haben es auf sie abgesehen.ShutterstockWie die Experten von Darktrace in ihrem aktuellen Threat Report 2026 darstellen, bleiben Cloud- und E-Mail-Konten das Einfallstor Nummer Eins in Europa. Dem Bericht zufolge begannen im vergangenen Jahr in Europa 58 Prozent der Attacken mit kompromittierten Cloud-Accounts oder…
-
AI Adoption Is Forcing Security Teams to Rethink Browser Defense
As organizations rush to adopt generative AI tools, the humble web browser has quietly become one of the most critical, and vulnerable, points in the enterprise security stack. Dhawal Sharma, executive vice president for product strategy at Zscaler, discusses how browser-based workflows, AI tools and unmanaged devices are reshaping the threat landscape and forcing security..…
-
The Top 5 Questions: How DSPM Illuminates the Murky World of Multi-Cloud Data Security
Tags: access, ai, api, attack, breach, cloud, compliance, computing, container, control, corporate, cryptography, cyber, data, data-breach, detection, encryption, exploit, firewall, intelligence, mitigation, monitoring, PCI, resilience, risk, risk-assessment, service, software, strategy, tactics, threat, tool, vulnerabilityThe Top 5 Questions: How DSPM Illuminates the Murky World of Multi-Cloud Data Security andrew.gertz@t“¦ Thu, 03/05/2026 – 16:09 Multi-cloud data security threats are escalating at an unprecedented rate. According to Forrester and the 2025 Thales Global Cloud Data Security Study, the primary drivers of multi-cloud risks are: growing complexity, insufficient access controls, and the…
-
Common ecommerce security vulnerabilities and testing strategies
Ecommerce platforms represent one of the most consistently targeted areas of the modern digital estate. They process payment data, store personal information, integrate with logistics and marketing systems, and underpin revenue for many large businesses. The combination of financial value and sensitive data makes ecommerce security vulnerabilities an attractive target for attackers. From a security”¦…
-
Should Cloud Be Classed as Critical Infrastructure?
Tags: access, authentication, banking, breach, business, cloud, compliance, computing, container, control, cyber, cybersecurity, data, dora, encryption, fido, finance, framework, governance, Hardware, healthcare, identity, incident, infrastructure, mfa, network, nis-2, radius, regulation, resilience, risk, saas, service, strategy, supply-chain, technologyShould Cloud Be Classed as Critical Infrastructure? madhav Thu, 03/05/2026 – 09:53 Over the past few years, large-scale cloud outages have demonstrated just how deeply digital services are woven into the fabric of modern society. When widely used cloud platforms experience disruption, the impact extends far beyond individual applications; banking services stall, transport systems falter,…
-
Why AI, Zero Trust, and modern security require deep visibility
Tags: ai, cyber, cybersecurity, data, detection, incident response, intelligence, soc, strategy, threat, tool, zero-trust72% of organizations say NAV is essential for proactive threat hunting and reactive incident response69% say a NAV solution is vital to their threat detection and incident response processThis isn’t about adding more gadgets to the SOC. It’s about strengthening the foundation that the SOC stands on.When visibility is weak, every advanced capability becomes unstable:AI…
-
Airtable’s 500K Row Limit Is Not a Scalability Fix, It’s a Signal to Rethink Your Data Strategy
Airtable’s new 500,000-row limit is making headlines, but it is not a true scalability upgrade. It is a signal. A signal that many teams are…Read More First seen on securityboulevard.com Jump to article: https://securityboulevard.com/2026/03/airtables-500k-row-limit-is-not-a-scalability-fix-its-a-signal-to-rethink-your-data-strategy/
-
How to know you’re a real-deal CSO, and whether that job opening truly seeks one
Tags: access, ai, breach, business, communications, compliance, control, cyber, data, data-breach, finance, framework, governance, incident response, infosec, insurance, jobs, metric, privacy, radius, risk, skills, strategy, threat, training, vulnerabilityStriking the right balance of experience and responsibility: Mark G. McCreary, partner and chief AI and IT security officer at Boston-based legal firm Fox Rothschild LLP, has seen both extremes: security being completely sidelined and security professionals given excessive, unjustified authority.In some firms, a newly appointed CSO might be positioned as a gatekeeper without the…
-
Cybersecurity Leadership: Identity, Access, Complexity
CEOs and CISOs on Dealing With the ‘Work From Anywhere’ Challenge. In this era of work from anywhere, identity and access management solutions are challenged more than ever. What are the strategies and solutions recommended by top CEOs and CISOs in the cybersecurity sector? An expert panel weighs in. First seen on govinfosecurity.com Jump to…
-
AI Emerges as the New Insider Threat: Thales Releases the 2026 Data Threat Report
Tags: access, ai, api, attack, business, cloud, compliance, container, control, credentials, cyber, data, deep-fake, encryption, governance, identity, infrastructure, risk, saas, skills, software, strategy, theft, threat, toolAI Emerges as the New Insider Threat: Thales Releases the 2026 Data Threat Report madhav Tue, 03/03/2026 – 15:00 Over the past year, I’ve watched AI move to operational reality across nearly every industry we work with. The conversation is no longer about whether AI will transform business. It already has. Cybersecurity Todd Moore –…
-
Avalara übernimmt Versori – KI-native Integrationen
Die Übernahme stärkt Avalaras Fähigkeit, Integrationen über Tausende von Systemen hinweg zu skalieren und treibt gleichzeitig seine langfristige Strategie voran, weltweit Echtzeit-Compliance im Rahmen jeder Transaktion bereitzustellen jederzeit verfügbar und audit-bereit. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/avalara-uebernimmt-versori-ki-native-integrationen/a43912/
-
Why Every Enterprise Needs a Strong API Security Strategy?
Modern enterprises are rapidly shifting toward API-centric architectures, leveraging APIs to connect internal systems, external partners, and digital services. With 74% of organizations adopting API-first development models, APIs now drive critical business logic and data exchanges at scale. However, this API proliferation also dramatically increases the attack surface, exposing sensitive data and business processes to……
-
7 factors impacting the cyber skills gap
Tags: ai, attack, automation, breach, business, ciso, control, cyber, cybercrime, cybersecurity, data, defense, detection, group, incident response, intelligence, jobs, risk, service, skills, strategy, technology, threat, tool, training, vulnerability2. Emerging technologies: New technologies, particularly AI, are contributing to a cyber landscape that’s evolving so quickly it’s hard for even highly skilled cybersecurity professionals to pace, says Dan Lohrmann, CISO at enterprise strategy and consulting firm Presidio.AI-driven threats keep moving the target, allowing cybercriminals to attack with unprecedented levels of speed and agility, Lohrmann…
-
The Attack Chain Your AI System is Already Missing
As AI adoption accelerates, organizations must evolve their security strategies from prompt filtering to comprehensive behavioral monitoring. This shift is critical to safeguarding against adaptive threats and ensuring safe AI deployment in production environments. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/03/the-attack-chain-your-ai-system-is-already-missing/
-
What makes an AI system capable of self-protection
How Can Non-Human Identities Enhance AI Protection? Have you ever considered the crucial role Non-Human Identities (NHIs) play in AI security? With capable AI systems become integral to various industries, ensuring their protection is paramount. NHIs, essentially machine identities, form the backbone of cybersecurity strategies designed to protect these systems. Managing NHIs involves overseeing both……
-
PCI-Compliant Authentication for Retail Enterprises
Retailers, fortify your defenses! Learn how PCI-compliant authentication protects customer data, prevents fraud, and avoids costly penalties. Click for expert strategies! First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/03/pci-compliant-authentication-for-retail-enterprises/
-
Building a risk-based data sanitization strategy: When to use Cryptographic erasure vs. physical destruction
Build your strategy on risk assessment, not on assumptions that one size ï¬ts all. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/spons/building-a-risk-based-data-sanitization-strategy-when-to-use-cryptographic/812586/
-
A scorecard for cyber and risk culture
Tags: access, automation, awareness, breach, business, compliance, control, credentials, cyber, finance, governance, identity, jobs, metric, mitigation, phishing, risk, service, strategy, tool, trainingWhen someone asks for an exception.When a change goes in late.When an alert fires at 2 a.m.When a junior analyst spots something odd and wonders if it’s worth escalating.When an executive wants speed, and the team wants safety. Ownership means people act like the risk is partly theirs. They don’t outsource judgment to “security.” They…
-
How CISOs can build a resilient workforce
Tags: ai, automation, ciso, communications, cyber, cybersecurity, data, infrastructure, jobs, monitoring, network, risk, service, skills, soc, software, strategy, technology, threat, tool, trainingBurnout leads to job dissatisfaction: Burnout is an ongoing concern for many CISOs and their teams, especially when unpredictable events can trigger workload spikes, burnout can escalate fast. “It’s something that can overwhelm pretty quickly,” Ford says.Industry surveys continue to flash red on persistent burnout that leads to job dissatisfaction. The ISC2 study found almost…
-
How to maintain control over your AI and its actions
How Can Organizations Effectively Manage Non-Human Identities? What strategies can organizations implement to safeguard their digital assets against misuse of Non-Human Identities (NHIs)? The journey to securing cloud environments against such threats begins with understanding how NHIs operate within cybersecurity frameworks. NHIs, essentially machine identities, serve as the backbone of secure communication and operations in……