If someone imagines cybersecurity at work, they are more likely to envision an analyst at their desk, using code to ward off threats. However, this is only half of the defensive puzzle. While experts use many digital tools and their brains to build protective walls, physical security remains important. Bridging […]

The Role of Zero Trust in Cyber and Physical Security ...

The call comes near the end of the workday. It’s a normal Tuesday. An employee is finishing up a few loose ends when the phone rings. The caller says he is from IT. There is a problem with the employee’s account. Nothing dramatic, he explains, but it needs to be […]

When the Voice Sounds Real: Defending Against AI-Driven Vishing

Third-party outsourcing helps expand operational efficiency, but it also introduces new layers of risk across security, compliance and financial integrity. System and Organization Controls (SOC) reports, particularly SOC 1 and SOC 2, help organizations evaluate external service providers through structured, independent assessments. Understanding their differences is essential for effective vendor […]

Understanding Third-Party Risk: What is the Difference Between SOC 1 ...

Organizations are rapidly adopting artificial intelligence (AI) to automate complex workflows and accelerate decision-making. However, the best approach for securing enterprise AI requires addressing new privacy and compliance challenges that traditional cybersecurity frameworks may not. This involves combining governance with advanced security controls and continuous risk management. What Are the […]

What Is the Best Approach for Secure Enterprise AI?

In Episode S8E8 of the Brilliance Security Magazine Podcast, host Steven Bowcut sits down with Abhay Kulkarni, Co-founder and CEO of WideField Security, for a timely discussion about why identity has become one of the most important control planes in modern cybersecurity. Drawing on his experience at Netskope, Cisco, Webex, […]

Securing the Identity Lifecycle

A new era of increasingly destructive cyberthreats means companies can no longer rely on traditional compliance-based cybersecurity awareness training. For the fifth year in a row, the Allianz Risk Barometer found that cyber incidents constitute the top global business risk—and by a “higher margin than ever before.” Researchers report that […]

Cyberattacks Are the Top Global Business Risk and CISOs Must ...

In Episode S8E7 of the Brilliance Security Magazine Podcast, host Steven Bowcut speaks with Phuong “Kenny” Nguyen, Chief Technology Officer at KhaiCode, about the growing challenge of understanding what is actually inside the software organizations rely on every day. KhaiCode focuses on what it calls binary exploit intelligence: the process […]

Why Binary Exploit Intelligence Matters in Software Supply Chain Security

Industrial environments increasingly connect information technology (IT) and operational technology (OT), expanding the attack surface of industrial control systems (ICS). ICS are high-value targets because they manage critical physical processes in energy, manufacturing and utilities. Limited patching, legacy technology and prioritizing availability over security increase exposure, making them attractive to […]

Are Your Industrial Control Systems Exposed to an IT-Side Breach?

Physical security has long relied on video systems that record events for later review. In the past, organizations would wait for something to happen and then rely on recorded footage to understand what went wrong. This model worked when environments were smaller and risks were easier to identify.  But today’s […]

Detecting the Unexpected: How AI Anomaly Detection Is Redefining Physical ...

As financial institutions accelerate their adoption of AI, automation, and cloud-native software delivery, a critical part of the enterprise technology stack may still be operating with outdated controls: database change. Liquibase, a provider of database change governance solutions used by many leading financial services organizations, has released The Financial Services […]

AI Raises the Stakes for Database Governance

Mergers and acquisitions (M&A) are complex business transactions that involve combining companies, assets and operations. The financial, legal and operational aspects of these transactions often take center stage, but cybersecurity has become an equally vital factor in ensuring a successful deal. Organizations are becoming more digitally interconnected, so overlooking cybersecurity […]

Cybersecurity Considerations in Mergers and Acquisitions

When accounting firms notice the first sign of a cybersecurity incident, it could already be too late. From a locked system to missing files and suspicious transactions, even a minor breach can ripple across dozens or hundreds of clients. With digital financial data becoming a core part of many operations, […]

Does Your Accounting Firm Have an Incident Response Plan?