Office Hours with David Girvin
Weekly office hours with David Girvin. Check out recent feature releases and updates, watch a quick live demo, and ask any questions with live Q&A.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
API Authentication 101: Methods, Pitfalls, and the Power of Real-Time Monitoring
See how Torq harnesses AI in your SOC to detect, prioritize, and respond to threats faster. Request a Demo.
The Importance of Realism in Cybersecurity
Hope is not a security control. Security professionals aren't pessimists - we're realists preparing for when systems fail and humans make errors. We model worst-case scenarios and likely threats because probability beats hope every time. Cybersecurity requires realistic risk management and incident response planning, not blind optimism. That's the security mindset. Realism understands controls decay and breaches happen. Preparation stops incidents, not positivity.
NIST CSF 2.0: Core Security Requirements
Learn the core requirements of NIST CSF 2.0, why they matter, and how they help organizations strengthen cybersecurity posture and risk management.
Manual API Security in 2026? Good Luck #apisecurity #automation #devsecops #aiautomation #api
You're still doing API security manually in 2026? 2016: 100 APIs → Could handle with smart people doing manual pen testing 2020: 1,000 APIs → Difficult but possible 2025: 10,000+ APIs → Physically impossible Long ago we did API security manually. There weren't many APIs. We had smart people. We'd do some pen testing and move on. That worked in 2016. But let's be honest—this problem is getting EXPONENTIALLY bigger. Every organization will realize: we can't do this manually anymore.
The Myth of "Known APIs": Why Inventory-First Security Models Are Already Obsolete
You probably think the security mantra “you can’t protect what you don’t know about” is an inarguable truth. But you would be wrong. It doesn’t hold water in today’s threat landscape. Of course, it sounds reasonable. Before you secure APIs, you must first discover, inventory, and document them exhaustively. The problem is that this way of thinking has hardened into dogma and ignores how attackers actually attack modern systems.
Cybersecurity "Armageddon": Are You Ready?
When it comes to cybersecurity, there’s no such thing as being too prepared. In this clip, Ryan Swimm, Senior Manager, GRC Program from Bitsight explains why "softball" security drills just don't cut it. To truly protect your organization, you need to practice for the worst-case scenario—your own "Armageddon" drill. Inside the Drill: Don't wait for a real crisis to find the gaps in your strategy. Practice for doomsday today!
What's the Difference Between IAM and IGA?
Identity and Access Management (IAM) and Identity Governance and Administration (IGA) are typically mentioned together, but they serve different purposes in identity security. In this short video, learn the key differences between IAM and IGA, why organizations need both and how KeeperPAM extends identity security into privileged environments.
Redefining Data Security: From Insight to Action
Most organizations don't lack data security tools, they lack cohesion. Teams often layer DSPM solutions for discovery and classification on top of DLP tools for enforcement. On paper, this looks comprehensive. In practice, it creates friction: This is the platform problem: technology stitched together, not designed together. Solving it requires more than integrations, it requires a purpose-built platform that combines visibility, control, and action across all states of data.
Cloudflare AI Security Suite: Protect AI-powered apps with Firewall for AI
AI is powerful and organizations continue to adopt AI at a rapid pace, but without protections in place, it’s risky. In this session, you'll learn about the risks Enterprises face around AI and how Cloudflare provides a layered security approach incorporating AI Security. We’ll walk through how you can secure your AI-powered applications with Cloudflare.