Skip to main content

Tag: risk management

301 articles

Person sits on bench in office corridor with laptop and paperwork, face obscured.

GRC AI Tools Fall Short on Enterprise Readiness

Most organizations are flying blind when it comes to GRC AI tools, with a staggering 87% of IT and security pros admitting they can't fully see the AI tools active within their organization. This visibility gap poses a foundational risk, making it harder to rely on other controls and assurances.

Analyst 207
Modern security operations center with people working in background, focusing on futuristic cybersecurity workstation.

Pentera Injects Validation into AI-Driven Security Workflows

Pentera is revolutionizing AI-driven security by injecting validation into workflows, empowering teams to turn disconnected risk signals into decisive action against real attack paths. By safely emulating attacker techniques, Pentera provides the evidence needed to transform guesswork into effective security measures.

Analyst 207
Rows of equipment and servers in a brightly lit network operations center.

Lumen Technologies Rebuilds Exposure Management with Trusted Asset Data

Lumen Technologies' security team transformed their exposure management by consolidating 40 disconnected systems into one trusted view, growing their asset count from 17,000 to 1.1 million devices. This overhaul empowered them to respond to incidents with confidence, knowing who owned what and taking informed risk decisions.

Analyst 207
Security team member overwhelmed by paperwork and notes, staring at laptop screen with blurred vulnerability list.

AI Exacerbates Vulnerability Prioritization Crisis

The irony of AI-powered vulnerability discovery is that it's creating an overwhelming crisis: despite spotting weaknesses at unprecedented speed and scale, organizations are no safer - just more inundated. The harsh truth is that a vulnerability is just a clue, not risk, and the real challenge lies in prioritizing and assessing true threats.

Analyst 207
Security professional stands before rows of computer screens, focused on a blank whiteboard.

Threat Management Fails to Keep Pace with Visibility Gains

Most organizations are drowning in threat intelligence, with an average of 14 distinct feeds, yet struggle to turn that visibility into action, with 61% unable to identify which vulnerabilities are most likely to be exploited. As a result, security teams waste 42% of their time on low-priority risks, highlighting a critical gap between threat awareness and effective management.

Analyst 207
Blurred laptop screen on office table surrounded by coworkers.

AI Agents Emerge as Unchecked Identities in Enterprise Security

The equation for enterprise security is no longer simple: with AI agents now connected to critical business services, controlling identities is no longer enough to control risk. These emerging insiders have quietly become privileged - and potentially invisible - attack paths that security and identity programs must urgently address.

Analyst 207
A sleek workstation with a laptop and futuristic devices on a neutral surface in a bright tech lab setting.

AWS Unveils AI-Powered Platform to Streamline Vulnerability Management

Discover and remediate code vulnerabilities with ease using AWS Continuum, a game-changing platform that streamlines vulnerability management with AI-powered recommendations and automated remediation. With Continuum, you can gain confidence in your security posture and automate fixes based on your own risk profiles and priorities.

Analyst 207
Modern IT operations area with computers, servers, and networking equipment in a clean and organized setup.

Vulnerability Patching Lag Exposes 91% of Organizations to Known Threats

The alarming truth is that 91% of organizations are leaving themselves exposed to known threats due to a vulnerability patching lag, with only 9% able to remediate high-severity flaws within a critical 24-hour window. This delay is not just a statistic - it's a recipe for disaster, with organizations that patch more slowly facing significantly higher breach rates.

Analyst 207
Business executive presenting to an audience in a modern boardroom.

Boards Urged to Prioritize Cyber Risk Quantification

To make cyber risk more tangible and actionable, boards are advised to prioritize quantifying it in terms of dollar value, allowing managers across the organization to understand and address potential threats more effectively. By translating cyber risk into a clear financial impact, companies like BP are better equipping themselves to manage and mitigate digital threats.

Analyst 207
Network operations center with computer workstations and servers in a brightly-lit room with a polished floor and large…

AI Tools Expose Vulnerabilities in Army's Unified Network

The Army's unified network is facing a new wave of vulnerabilities, thanks to AI tools that are making it easier for attackers to breach defenses. With AI, techniques that once required specialized skills can now be scaled with ease, expanding the attack surface and increasing risk.

Analyst 207
Australian cityscape under stormy skies with construction work in progress.

Australia Grapples with Integration Lag in Overlapping Risk Era

We're facing a new reality of overlapping risks that are continuous, concurrent, and cascading - a far cry from the isolated shocks of the past. It's time for governments and institutions to rethink their response to risk, as the old approach of tackling single problems at a time no longer fits the problem.

Analyst 207
Modern office space divided, two sections separated by a gap.

Threat Intelligence Fails to Bridge Business Risk Gap

Threat intelligence falls short when it doesn't drive informed decision-making, often leaving a gap between analyst findings and senior leaders' priorities. Silobreaker and the SANS Institute are bridging this gap with a new study that explores how to turn threat intelligence into actionable business risk strategies.

Analyst 207
Brightly lit conference room with engaged attendees, podium, and large screen near tall windows.

Cybersecurity Shifts from Risk to Acceleration, Connection

The World Economic Forum's 2025 survey reveals a stark reality: 72% of organizations are facing increased cyber risks, with ransomware remaining a top threat - forcing us to rethink how we keep information safe in an AI-driven world. It's time to shift from traditional risk management to practical, accelerated solutions.

Analyst 207
Modern office setting with employees working at desks, focus on blurred laptop screen.

Enterprise AI Risk Concentrated Among Small Group of Power Users

Meet the AI power users: a small but mighty 5% of enterprise employees who are generating a whopping 144 conversations or more with AI tools, creating a concentrated risk that demands attention. These super-users are producing far more intense interactions, with 18 prompts per conversation compared to just 2.

Analyst 207
Ruggedized laptop on a ship's command center console, surrounded by navigation and communication equipment.

US Navy Rethinks Risk in Software Development for Edge Operations

The Department of the Navy is shaking up its approach to software development, redefining risk to deliver mission-critical data at breakneck speeds. By recalibrating its tolerance for risk, the Navy aims to accelerate the flow of vital information to where it's needed most, when it's needed most.

Analyst 207
Exhausted cyber professional sits at cluttered desk surrounded by empty coffee cups.

Cybersecurity Burnout Spurs Call for Risk-Based Response

Half of all cyber professionals are burning out weekly or daily - it's time for organizations to shift their approach and view burnout as a critical operational risk, rather than just a wellness issue. By reframing burnout in this way, businesses can prioritize effective solutions and safeguard their cyber resilience.

Analyst 207
Well-lit conference room with large wooden table and chairs in a modern British financial sector office.

UK Firms Bolster Cyber Defenses as AI Risks Mount

As uncertainty becomes the new normal, UK businesses are bolstering their cyber defenses, with 68% of leaders planning to boost cybersecurity investment over the next year. Despite this, many remain vulnerable, with fewer than three in 10 confident in their ability to respond to a major cyber incident.

Analyst 207
Network operations center with large screen displaying internet map and analysts at workstations.

SecurityScorecard Bolsters Internet Visibility with Driftnet Acquisition

SecurityScorecard has acquired Driftnet, an internet scanning startup, to supercharge its third-party risk management capabilities with deeper, real-time visibility into internet infrastructure and hidden exposures. This strategic move allows SecurityScorecard to directly control data quality and drive future innovation in AI security.

Analyst 207
Brightly-lit network operations center with a large wall-mounted screen displaying security data.

Securing Autonomous AI Requires New Risk Strategies

Autonomous AI agents are revolutionizing enterprise environments with lightning-fast speed, unprecedented autonomy, and access to sensitive systems and data - but many security teams lack the visibility and control to manage the resulting risks. This game-changing technology is rapidly expanding the enterprise attack surface, demanding new risk strategies to stay ahead.

Analyst 207
Hospital corridor with people, laptop on administrator's desk, natural light, and plants.

Cyber Insurance Grapples with AI Liability Risks

As AI-driven tools take on a bigger role in patient care, hospitals and insurers are scrambling to reevaluate cyber insurance policies and figure out who's liable when things go wrong. To navigate this uncertainty, experts recommend carefully scrutinizing policy exclusions to ensure you're protected against your biggest risks.

Analyst 207
Business professionals shaking hands in a conference room with a cityscape in the background.

Allianz Transfers Commercial Cyber Unit to Coalition

This game-changing partnership brings a fresh approach to commercial cyber insurance, elevating protection and benefits for customers. By joining forces, Allianz and Coalition are revolutionizing cyber coverage with a unique and robust offering.

Analyst 207
IT professional examines security dashboard with thoughtful expression.

Breach Readiness Lags as Identities Become Prime Attack Surface

To stay ahead of threats, organizations must move beyond generic risk assessments and instead focus on tailored risk management, taking into account the unique business context and technical severity of potential breaches. By doing so, they can harden identity controls, improve governance, and build a stronger defense against cyber attacks.

Analyst 207
Employees work alongside AI technology in a brightly-lit office setting with laptops and papers.

Securing AI Adoption Requires New Risk Oversight Approach

As AI adoption accelerates, organizations are essentially onboarding fast-moving digital colleagues that require a new risk oversight approach - one that acknowledges their unique behavior and risk profile, which differs significantly from human workers. Traditional human-centric controls may not be enough to secure this new digital perimeter.

Analyst 207
Modern building with futuristic atmosphere and blank wall-mounted screen.

US Agencies Warn of AI Deployment Risks, Issue Security Guidance

As AI systems become more autonomous, US agencies warn that they may behave unexpectedly, and organisations should prepare for this by prioritising resilience and risk containment. To stay safe, businesses should assume the unpredictable and plan deployments with caution.

Analyst 207