Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

LLMs, Quantum Computing, and the Top Challenges for CISOs in 2026

Cybersecurity in 2026 is entering its most transformative and volatile phase yet. For CISOs, the landscape is no longer defined only by web, network, and cloud threats. Instead, attackers now target AI/LLM systems, APIs, identity platforms, SaaS ecosystems and supply chains. The surge in attacks across applications, APIs, and GenAI systems indicates that adversaries are scaling faster, using automation, AI-assisted exploitation, and new social engineering vectors.

Top CISO Priorities and Global Digital Trust with Morgan Adamski

Welcome to Data Security Decoded. Join host Caleb Tolin in conversation with Morgan Adamski who leads Cyber, Data, and Tech Risk at PwC and is a former US national security leader who spent 16 years tracking nation-state threats inside the US government. Coming out of a career spent inside secure facilities without windows or phones and working to address China’s prepositioning in US critical infrastructure, Morgan shares a direct view of how geopolitics is now shaping cyber risk decisions in boardrooms.

EU Cyber Resilience Act Readiness: A Strategic Guide for CISOs

Authors: Tova Dvorin, Senior Product Marketing Manager On December 10, 2024, the EU Cyber Resilience Act (CRA) officially entered into force, marking the start of a three-year runway before its main obligations apply on December 11, 2027. While that might seem distant, the reality is clear: compliance preparation must begin now.

CISOs turn cyber risk into boardroom business value

Boards now view cybersecurity as a core component of enterprise risk and growth, not just an IT line item. Rising breach costs, regulatory scrutiny, and expanding digital footprints mean directors want to understand how security decisions affect revenue, valuation, and resilience over the long term. For Chief Information Security Officers, that shift creates both pressure and opportunity. The role now includes translating technical risk into clear business impacts, justifying investment with data, and showing how a modern security program protects and even unlocks value across the organization.

The Shadow AI Disconnect CISOs Need to Know

Our new State of Shadow AI Report has just uncovered a critical disconnect that all security leaders need to be aware of. We all know shadow AI is exploding, and that blocking is the most logical response. How else are you going to regain control? But our data shows this is backfiring: This is where blocking can get dangerous. It doesn't stop AI; it just limits your visibility. Download the full (ungated) shadow AI report to see all the data.

The CISO's Checklist: How to Evaluate an API Security Platform

API Security Evaluation Checklist In the first half of 2025, APIs have emerged as the primary focus for attackers. Unlike traditional broad attacks on websites, threat actors are increasingly exploiting vulnerabilities and launching DDoS attacks on APIs, which are often harder to secure and manage at scale. Key insights from the State of Application Security Report H1 2025.

A CISO's Guide to Defending Against Social Media Impersonation

The platforms your customers trust to connect with your brand are now being weaponized to destroy its reputation. AI is equipping cybercriminals with industrial-scale operations that can replicate your brand presence across all major social platforms in just minutes. This guide provides a CISO's framework for moving from reactive brand monitoring to proactive threat disruption, detailing a four-pillar plan to neutralize these threats before they impact your business.

5 Ways CISOs can turn GRC into a profit center, not a cost center

For years, Governance, Risk, and Compliance (GRC) has been viewed as a necessary expense, an insurance policy for when things go wrong. But a new generation of CISOs is proving that when managed strategically, GRC can do far more than protect. It can unlock growth, accelerate deals, and strengthen customer trust.