Agentic AI security: Key challenges and how to address them
Agentic AI security protects autonomous AI systems that independently plan, reason, and execute multi-step actions across enterprise environments without continuous human oversight.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
What is the NIS2 Directive: A practical overview for organisations
The NIS2 Directive is the European Union’s updated cybersecurity framework, designed to improve cyber resilience across critical sectors. Building on its predecessor, the Network and Information Systems (NIS) Directive, NIS2 significantly expands its scope to include industries such as healthcare, manufacturing, energy, transport and managed services. NIS2 also introduces stricter cybersecurity requirements, direct accountability for senior management and defined incident reporting timelines.
What is IT Security? Understanding the fundamentals
Information Technology (IT) security is the practice of protecting an organization’s systems, data and networks from unauthorized access and cyber threats. It encompasses a wide range of processes, policies and technologies designed to secure everything from employee devices to cloud infrastructure.
Why Insider Threats Don't Trigger Alerts
Insider threats often don’t trigger alerts because the activity relies on valid credentials, approved tools, and authorized workflows. When viewed as individual events, this behavior looks normal and stays below traditional rule thresholds. Risk accumulates across otherwise valid actions without producing a signal that meets alert thresholds.
Office Hours with David Girvin
Weekly office hours with David Girvin. Check out recent feature releases and updates, watch a quick live demo, and ask any questions with live Q&A.
Agentic workflow automation: governing AI agents inside workflows
AI agents don't behave like the playbooks security and IT teams have spent years building. They form intent, select tools at runtime, and chain actions across systems in sequences nobody pre-authored. This means dropping an LLM into an existing automation sequence and expecting it to act like a smarter playbook is the fastest route to ungoverned, unpredictable outcomes.
Turn Jira Service Management into a Governed Access Control Platform
As a fintech organization, you depend on multiple systems like AWS, Databricks, Snowflake, Power BI, Stripe Treasury, Identity Providers (IdP), developer tools, internal operational platforms, and many more. Managing access and access level across platforms is often disconnected and spread across emails, Slack approvals, tickets, and sometimes spreadsheets. Obviously, this is inefficient. There'll be delays in onboarding. But that's the least of your worries.
The Hard Truth About Ransomware Recovery
Restoring data is only half the battle. You must validate every privileged account and device relationship before going back to production.
Cyber Sessions with Sohail Iqbal, CISO at Veracode | CSO Cybersecurity Conference & Awards
As AI accelerates software development at machine speed, security teams are struggling to keep up with remediation. In this insightful interview, Veracode CISO Sohail Iqbal breaks down the security realities of AI-assisted coding and shares how organizations can close the growing gap between code velocity and secure deployment.
How we're actually using AI in the SOC with Eric Capuano
Join us for the final episode of Defender Fridays as Eric Capuano, creator of Defender Fridays and co-founder of Digital Defense Institute, closes out the series with a candid conversation on how he's actually building and running agentic workflows in the SOC today. At Defender Fridays, we delve into the dynamic world of information security, exploring its defensive side with seasoned professionals from across the industry. Our aim is simple yet ambitious: to foster a collaborative space where ideas flow freely, experiences are shared, and knowledge expands.