Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

veracode

6 Best Practices for Managing Software Supply Chain Risks

May 28, 2026 By Natalie Tischler In Veracode
Modern software is not written from scratch. It’s assembled. Developers pull from open-source repositories, import third-party libraries, accelerate development with AI coding assistants, and deploy across multi-stage CI/CD pipelines that span dozens of tools, services, and vendors.
Read Post

How AI Is Changing What Security Teams Can Actually Do | Nancy Phillips, Ensemble Health Partners

May 28, 2026 By Reach Security In Reach Security
Threat actors used to need days or weeks to exploit a vulnerability. Now AI lets them do it in seconds. Most security teams are already buried. Too many tools, too many alerts, manual processes that can't keep pace, and break-glass changes that get made and forgotten. Keeping everything configured and optimized correctly is a full-time job on its own. Nancy Phillips, Chief Information Security Officer at Ensemble Health Partners: "I want my teams doing the innovative stuff. Not the mundane, repeatable stuff.".
View Video
Torq

Security Automation Doesn't Mean What It Used To: A 2026 Practitioner's Guide

May 28, 2026 By Torq In Torq
Security automation used to mean building a playbook. Someone on the team mapped out a workflow, connected a few tools, and watched it run on the alert types it was designed for. That worked for a while, in a different environment than the one security teams operate in today.
Read Post
aikido

What MDM can't protect on developer machines (and what to do about it)

May 28, 2026 By Nicholas Thomson In Aikido
Mobile Device Management (MDM) is a type of software used by organizations to secure, manage, and monitor their employees' mobile devices. Tools like Jamf, Kandji, and Microsoft Intune give IT teams visibility and control over every sanctioned application across the fleet. For compliance frameworks like SOC 2 or ISO 27001, MDM is often a core component of how you demonstrate device control and ensure data security. If your MDM is deployed, congratulations, you've solved 2012's BYOD security challenge.
Read Post
CurrentWare

How State and County Law Enforcement Use AccessPatrol to Meet CJIS and NIST 800-53 Requirements

May 28, 2026 By CurrentWare In CurrentWare
I spent nearly a decade in the U.S. Federal Government, including roles at the White House, the U.S. Department of Commerce, and the U.S. Senate. I later advised public sector clients on technology and strategic growth problems at Accenture. The same pattern showed up everywhere I went. Agencies invest in sophisticated network defenses.
Read Post
cato networks

What Consistent Leadership Across SSE, SD-WAN, and SASE Signals

May 28, 2026 By Brian Greenberg In Cato Networks
GigaOm’s latest analysis highlights a clear shift in the market. As they note, “The standalone Secure Service Edge (SSE) market has largely disappeared, with leading vendors now offering complete SASE solutions that converge software-defined wide-area network (SD-WAN) and SSE into single-vendor platforms. Organizations increasingly favor this consolidated approach to reduce operational complexity and improve visibility.”
Read Post
teleport

Remote Access That Works Behind NAT, CGNAT, and Uncontrolled Firewalls

May 28, 2026 By Steven Martin In Teleport
A device in your fleet encounters an issue. You try to SSH in only to discover that the IP changed overnight, the customer's firewall blocks inbound connections, and the VPN they set up six months ago stopped working when the device switched from Wi-Fi to cellular. The next several hours disappear into a Slack thread with the customer's IT team trying to get a port opened. Every engineer who has shipped hardware into a customer's environment has a version of this story.
Read Post

Businesses have NO IDEA how bad AI attacks can be

May 28, 2026 By LimaCharlie In LimaCharlie
There are two types of companies: those who have been compromised and those who will be. Mid and small businesses are walking into this reality without understanding what AI has changed. On The Cybersecurity Defenders Podcast, David Chernitzky, CEO and co-founder of Armour Cybersecurity, explains why the gap between how large organizations understand AI-driven threats and how smaller ones do is widening fast.
View Video

From PentestGPT to production: The state of AI-assisted offensive security with Charles Grandjean

May 28, 2026 By LimaCharlie In LimaCharlie
Join us for this week's Defender Fridays as Charles Grandjean, CTO and Co-founder at Hexiagon AI, breaks down where AI-assisted pen testing actually stands today and what it means for both red teams and defenders. At Defender Fridays, we delve into the dynamic world of information security, exploring its defensive side with seasoned professionals from across the industry. Our aim is simple yet ambitious: to foster a collaborative space where ideas flow freely, experiences are shared, and knowledge expands.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.