Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

reach security

Threat Exposure Management: A Better Way to Answer "How Exposed Are We?"

Nov 26, 2025 By CP Morey In Reach Security
Security leaders are asking a new question with greater urgency: How exposed are we? In an era where every application, identity, and integration expands the attack surface, answering that question with clarity is no longer optional. The traditional model of vulnerability management cannot keep up. Findings come in faster than they can be addressed. Visibility is fragmented. Risk prioritization is often based on severity scores rather than business impact.
Read Post
Featured Post
My Black Friday Cybersecurity Wishlist

My Black Friday Cybersecurity Wishlist

Nov 20, 2025 By Chloe Potsklan, Senior Security Researcher In Reach Security
Black Friday and Cyber Monday always bring bargain buys as consumers hunt for deals to make the upcoming festive season special, but they are also a bonanza for cybercriminals. Attacks spike during the holiday season as cybercriminals take advantage of workers being out of their usual routine and less vigilant than normal. This makes for far from happy holidays for the businesses affected. However, what many organizations don't realize is that often they already have the tools to protect themselves in their security armory; they just haven't activated them.
Read Post
reach security

Proactively Identify and Eliminate Defensive Weaknesses with Cybersecurity Domain-Specific AI

Nov 20, 2025 By John Dominguez In Reach Security
AI is everywhere. I live in San Francisco, and a day doesn’t go by that I don’t see a billboard, an advertisement on the side of a bus, or a tech bro’s hoodie with two big letters on it: AI. It’s no different in cybersecurity marketing – AI terminology is everywhere. But too often, it’s tacked on as a buzzword – a thin layer washed on top of existing security tools, with little real impact. This makes it tricky to decipher what’s real and what’s hype.
Read Post
reach security

Network Security Policy Management (NSPM): Keeping Policy and Reality Aligned

Nov 19, 2025 By John Dominguez In Reach Security
Network Security Policy Management (NSPM) is the discipline of defining, enforcing, and maintaining the network policies that govern how systems communicate, what data moves where, and who can access what. It sits at the intersection of security and operations, helping organizations maintain consistent, enforceable rules across increasingly complex infrastructures.
Read Post
Reach Security Recognized as a CRN® 2025 Stellar Startup!

Reach Security Recognized as a CRN® 2025 Stellar Startup!

Nov 10, 2025 By Reach Security In Reach Security
Reach Security announces that CRN , a brand of The Channel Company, has included Reach Security on its 2025 Stellar Startups list in the Security category. This prestigious list highlights fast-rising technology vendors that are driving innovation and fostering growth in the IT channel with groundbreaking products.
Read Post
Featured Post
The Shift Left of Boom: Making Cyber Threat Prevention Practical Again

The Shift Left of Boom: Making Cyber Threat Prevention Practical Again

Nov 5, 2025 By John Dominguez, Senior Director of Product Marketing In Reach Security
The old saying "prevention is better than cure" has lost currency in today's cybersecurity industry. Instead, security teams are advised to assume that the business has been breached and focus on threat detection, investigation, response, and recovery. Yet, during cyber incident post-mortems, it is not uncommon to find that the business owned the tool that would have protected it against the breach. The problem arose because it wasn't correctly configured before the incident happened, and no one knew this - or if they did, they didn't have the time or resources to fix it.
Read Post
reach security

EAP and XDR: An Essential Marriage of Proactive and Reactive Security Operations

Oct 22, 2025 By John Dominguez In Reach Security
In cybersecurity, detection and response are table stakes. Attackers are faster, techniques more subtle, and the cost of even small missteps on the part of the defender is growing. For security teams investing in Extended Detection and Response (XDR) tools like Palo Alto Networks Cortex XDR, those investments are critical—but they are not enough on their own.
Read Post
reach security

Security Starts Left of Boom: Pre-Event Strategies for Proactive Risk Reduction

Oct 16, 2025 By John Dominguez In Reach Security
For years, cybersecurity has lived under a grim banner: “It’s not a matter of if you’ll be breached, but when.” That phrase became the industry’s guiding principle. Relying on prevention alone was slowly written off as impossible. Instead, the dominant wisdom declared that organizations must accept compromise as inevitable and prepare to deal with attackers after they had already gained a foothold.
Read Post
reach security

Rethinking Security Posture Assessments

Oct 8, 2025 By CP Morey In Reach Security
Security posture assessments are a foundational part of any security program. They’re how organizations take stock of their defenses, evaluate coverage, and identify gaps. But in practice, many posture assessments have become stuck in a pattern. They follow the same checklist, occur on a set routine, and result in a static document that often doesn’t translate into real change. The problem isn’t that posture assessments are irrelevant.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.