Mailchimp
Not subscribed to OpsMatters Newsletter
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Latest posts
Teleport Named Most Innovative Identity and Access Management Platform in 2026 Cybersecurity Stars Awards
The Hacker News recognizes Teleport for its infrastructure identity architecture that delivers resiliency, scalability, and agility to modern computing environments.
How Supply Chain Risk Went From 2 Problems to 15
Third party risk used to focus mainly on legal and financial checks. Now organisations have to think about a much wider set of issues, from cyber posture and resilience to operational dependency and concentration risk across a growing supplier web.
The Ultimate Guide to API Security in AI Applications
API security is the practice of protecting the interfaces that connect your applications, models, and data from unauthorized access, abuse, and data theft. In AI applications, APIs carry prompts, model responses, customer PII, and agent instructions, which makes them the single most exposed layer of your AI stack. Securing them requires authentication, rate limiting, encryption, and a layer most teams miss: protection of the sensitive data in every API call.
It's Not If Attackers Get In. It's What Happens Next | Insurity CISO Jay Wilson
"Usually it's not a question of if the bad guys get in. It's a question of what happens when they do." Jay Wilson, CISO and CIO at Insurity, and Garrett Hamilton, CEO of Reach, joined Shubhangi Dua on The Security Strategist from EM360Tech to talk about why the controls you already own are where exposure quietly builds up. That's Jay's line, and one every security leader has lived. Defense in depth only holds if every inner layer is configured the way you think it is. The outer door gets the attention. The inner doors are where incidents actually get stopped, or don't.
CMMC ESP Scoping for Managed Service Providers
The CMMC ecosystem is poised to be very strict in a very short amount of time, which means a lot of organizations are quickly finding that they need to do a lot of work in short order. A significant area of concern is where MSPs fall into the spectrum of security. Managed Service Providers are a key part of how modern digital businesses operate, but they’re also distinct and separate from the businesses themselves.
Risk-based vulnerability management explained
Risk-based vulnerability management (RBVM) is a cybersecurity methodology that prioritizes vulnerabilities based on actual business risk rather than technical severity scores in isolation. RBVM combines vulnerability severity, exploitation likelihood, threat intelligence, and asset criticality to focus remediation on the exposures most likely to be weaponized against your specific environment.
Let's Talk Security: Leading Healthcare Security Through Constant Change
Healthcare CISOs are navigating one of the most complex security environments. In this conversation, Barry Mainz will be joined by David Finkelstein, CISO, St. Luke’s University Health Network, a seasoned healthcare security leader with experience spanning cyber, operations, and military service, to discuss what it takes to build a modern healthcare cybersecurity program that is resilient today and ready for tomorrow.
AI Kill Switch Architecture: How to Stop a Rogue AI Agent
AI agents today are becoming a part and parcel of everyday enterprise operations. They can access databases, trigger workflows, send emails, approve requests, and interact with business systems with very little human involvement. What started as AI assistants is now evolving into autonomous operators capable of making decisions and executing actions at machine speed.
Supply Chain Whiplash: Why Your Orders Keep Slipping
Quick answer: Today’s supply chain disruptions stem from surging demand for components, especially server CPUs feeding the AI build-out, rather than the pandemic-era shutdowns of 2020 and 2021. Companies can protect themselves by diversifying suppliers, locking in pricing terms early, holding strategic inventory, and investing in real-time visibility tools. Think of your supply chain like the plumbing in an old building. When everything flows, you never think about it.
Why AI Projects Stall and How CIOs Can Respond
Across enterprises, a familiar pattern is emerging. A business unit identifies an AI tool with a clear upside in productivity or revenue. Their proposal moves into procurement. Security raises concerns, and the legal team asks new questions about the tool. Compliance starts hesitating and the momentum slows. Finally, the project stalls. This friction is not due to resistance to innovation. It reflects a deeper structural issue: Most enterprise governance models were not designed for AI.