Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

veracode

Veracode Named a Leader in GigaOm Radar for Software Supply Chain Security

Feb 10, 2026 By Karen Buffo In Veracode
Modern software development is a balancing act. You are under constant pressure to innovate faster, ship features daily, and maintain near-perfect uptime. To meet these demands, development teams rely heavily on open-source libraries, APIs, and third-party components. It’s efficient, but it introduces a significant challenge: your attack surface is now composed of code you didn’t write. Securing this complex web of dependencies—your software supply chain—is no longer optional.
Read Post
1Password

Streamlining SaaS onboarding and offboarding

Feb 10, 2026 By Dominic Garcia In 1Password
Onboarding and offboarding are two of the most important and frustrating jobs IT owns. When onboarding works, new hires are productive on day one. When offboarding is done correctly, access is removed cleanly, data remains protected, and audits are much less painful. When either breaks down, the consequences appear quickly: lost productivity, security gaps, wasted spend, and hours of manual cleanup.
Read Post
cyberhaven

How DSPM Works: A Practical Guide for Modern Data Security Teams

Feb 10, 2026 By Bruce Chen In Cyberhaven
As organizations generate, copy, and share more data than ever before, traditional security models are breaking down. Sensitive data no longer lives neatly inside a handful of databases or file servers. It flows continuously across cloud platforms, SaaS applications, employee endpoints, and now generative AI tools that create entirely new data derivatives at machine speed. This reality is exactly why data security posture management (DSPM) has become a fast-growing and essential data security solution.
Read Post
CrowdStrike

Inside the Human-AI Feedback Loop Powering CrowdStrike's Agentic Security

Feb 10, 2026 By Chris Bowie - Grace Ural - Lucia Stanham In CrowdStrike
Adversaries are continuously evolving their tactics, techniques, and procedures to evade both legacy and AI-native defenses, and they’re using AI to their advantage. Stopping them requires a new approach: humans and AI working together. While AI can correlate massive volumes of telemetry at machine speed, pattern recognition alone is not enough to stop modern attacks. Training on detections teaches models what happened, but not why it mattered.
Read Post
astra

What are SOC 2 Penetration Testing Requirements?

Feb 10, 2026 By Ananda Krishna In Astra
A SOC 2 Penetration Testing (pentest) is often highly recommended by the auditors to demonstrate the effectiveness of the controls implemented during the SOC 2 audit. Developed by the American Institute of CPAs (AICPA), SOC 2 establishes a comprehensive framework based on 5 key pillars for managing data and strengthening relationships with all stakeholders.
Read Post
Managing Audio Distractions in Hybrid Work

Managing Audio Distractions in Hybrid Work

Feb 10, 2026 By SecuritySenses In SecuritySenses
Hybrid work environments expose employees to continuous acoustic variability, where unmanaged microphones and delayed use of the mute button frequently cause unintended audio interruptions. These disruptions break concentration cycles, increase cognitive load, and reduce meeting efficiency across distributed teams. Effective sound control has therefore become a measurable productivity factor rather than a subjective comfort issue.
Read Post
How to Improve Cyber Security and Phishing Protection with a Fractional Executive

How to Improve Cyber Security and Phishing Protection with a Fractional Executive

Feb 10, 2026 By SecuritySenses In SecuritySenses
Many organisations today turn to fractional executives - such as a fractional CEO or fractional CFO - to gain fast access to reliable external expertise that improves operations without committing to a full-time hire. Similar solutions exist for specialised cyber security leadership: a fractional CISO can provide strategic oversight, governance, and risk-based decision-making on a flexible basis. For organisations facing ever-more sophisticated threats and limited internal resources, engaging an expert on a fractional basiscan mean the difference between reactive firefighting and proactive cyber resilience.
Read Post
apono

Extending Access Duration Without Breaking Flow

Feb 9, 2026 By Gabriel Avner In Apono
Today we’re introducing Extending Access Duration, a new capability designed to solve a problem we kept hearing about from customers who rely on short-lived, approved access to sensitive systems. Just-in-Time access is the right model for protecting critical resources. But real work does not always fit neatly into the time window defined when an access flow was created.
Read Post
netacea

The 2026 Forecast for AI-Driven Threats

Feb 9, 2026 By Netacea In Netacea
2025 changed the shape of digital risk. In 2026, the impact accelerates. The fastest-growing threats no longer look like traditional attacks. They arrive through apparently legitimate automated access – AI agents, LLM crawlers, and delegated automation interacting directly with revenue-critical systems. They don’t trigger alarms. They quietly extract value, distort pricing logic, and reshape digital economics at scale.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.