Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

In this episode, Dr. Pawan Jawla, Chief Mission Security Officer at Tata AIA, shares what truly keeps security leaders awake at night while protecting mission-critical insurance systems. From the rise of low-cost ransomware and evolving fraud techniques, to meeting Government of India, DCI, and insurance-specific compliance standards. We also explore why security audits should be treated as gap-finding, not fault-finding, the persistent confusion around data ownership inside enterprises, and why, despite massive investment, 95% of organizations still struggle to see ROI from AI.

A critical XXE vulnerability, CVE-2025-66516, has been discovered in Apache Tika, putting any workflow that processes PDFs at serious risk. A malicious PDF can trigger the exploit through any Tika workflow, silently giving attackers access to sensitive files, internal URLs, cloud metadata, and your internal network. AppTrana blocks these malicious PDFs at the edge, keeping your data and internal systems secure.

New XSS vulnerability in Apache SkyWalking! CVE-2025-54057 enables stored script injections that steal sessions and manipulate dashboards. Fix + protection steps inside.

With over 32,000 security incidents reported by U.S. federal agencies in the past year, cyber risks are growing in scale and complexity. NIST SP 800-53 r5 provides a comprehensive framework of security and privacy controls to help organizations manage risk, protect critical systems, and maintain regulatory compliance.

Achieving FedRAMP compliance is complex, but AppTrana WAAP simplifies it. This video explains how AppTrana delivers continuous vulnerability scanning, attack prevention, SIEM-friendly audit logs, real-time incident response, and automated remediation through SwyftComply. Perfect for CISOs, compliance teams, and cloud security leaders preparing for FedRAMP audits.