governance

AI Is Making Software Autonomous, and Governance Must Follow

AI Is Making Software Autonomous, and Governance Must Follow

| | AI, Artificial Intelligence, automated open source governance, Automation, Development, governance, software supply chain automation, Thought Leaders
In 2011, Marc Andreessen famously wrote that "software is eating the world." Today, software is no longer just a competitive advantage; it is the foundational infrastructure for nearly every industry. We don't merely ...
2024 Sonatype Blog
Veeam Unfurls Platform to Govern and Secure AI Agents

Veeam Unfurls Platform to Govern and Secure AI Agents

| | Agentic AI, Cybersecurity, governance, Veeam
Veeam Software today launched a platform through which organizations can enforce policies that in real time limit the data that artificial intelligence (AI) agents are allowed to access. Announced at a VeeamON ...
Security Boulevard
The Shadow AI Governance Crisis: Why 80% of Fortune 500 Companies Have Already Lost Control of Their AI Infrastructure

The Shadow AI Governance Crisis: Why 80% of Fortune 500 Companies Have Already Lost Control of Their AI Infrastructure

| | AI (Artificial Intelligence), AI assistant, CISO, Cyber Security, enterprise, governance, security
80% of Fortune 500 companies now run active AI agents. Only 10% have a clear strategy to manage them. Here is what the other 90% face - and the 5-part framework that ...
Deepak Gupta | AI & Cybersecurity Innovation Leader | Founder's Journey from Code to Scale

The Shadow AI Governance Crisis: Why 80% of Fortune 500 Companies Have Already Lost Control of Their AI Infrastructure

| | AI (Artificial Intelligence), AI assistant, CISO, Cyber Security, enterprise, governance, security
80% of Fortune 500 companies now run active AI agents. Only 10% have a clear strategy to manage them ...
Deepak Gupta's notebook
Legacy AppSec Is Out of Step with the Speed of AI

Legacy AppSec Is Out of Step with the Speed of AI

| | AI, AppSec, Checkmarx, GenAI, governance
The timing is off, and it seems to be getting worse. Traditional application security pipelines were designed way back in the days when only humans wrote code … two years ago, that ...
Security Boulevard
The New Insider Threat: Autonomous Systems With Excessive Permissions 

The New Insider Threat: Autonomous Systems With Excessive Permissions 

| | AI, artificialintelligence, AutonomousAgents, CISO, cloudsecurity, Compliance, Cybersecurity, dataprivacy, DataProvenance, DevSecOps, governance, IdentityAndAccessManagement, informationsecurity, InsiderThreat, MachineIdentity, PrivilegedAccessManagement, PromptInjection, RiskManagement, RPA, zerotrust
Explore how overprivileged AI agents are becoming the "new insider threat" in 2026. Learn about the rise of autonomous machine identities, the "superuser problem," and real-world breaches like Amazon Q and EchoLeak ...
Security Boulevard
Security Automation

SaaS Sprawl has Become the New Shadow IT: Why Traditional Security Struggles to See (and Stop) It 

| | AI integrations, anomaly detection, API security, Application-Layer Visibility, behavioral analytics, CASB, continuous discovery, governance, misconfigurations, OAuth permissions, permission scopes, plugin risk, real-time remediation, SaaS posture, SaaS Sprawl, SaaS-to-SaaS, SaaSOps, shadow IT, third-party integrations, token revocation
Analysis of SaaS sprawl amplified by AI integrations arguing for continuous discovery, application-layer visibility, policy enforcement, and real-time remediation to tame shadow IT and API‑level risk ...
Security Boulevard
Threat Modeling with AI: A Developer-Driven Boon for Enterprise Security 

Threat Modeling with AI: A Developer-Driven Boon for Enterprise Security 

| | AI tooling, AI-assisted threat modeling, AppSec collaboration, Attack Surface, Automation, continuous threat modeling, developer upskilling, developer-centric security, developers in security, governance, IDE integration, iot threats, LLMs in security, pattern recognition, proactive resilience, risk tooling, scalable defenses., Secure Coding, Security Culture, security proficiency, shift left, Supply Chain Risk, Threat Modeling, traceability, Vulnerability Remediation
For companies running a modern, adaptive and defense-centered security program, threat modeling is not a new concept. In fact, it’s one of the core tenets of preventative cybersecurity best practices. Being able ...
Security Boulevard
exposed ports, network, traffic, analysis, Iran hacking UNC1860 initial access networks

Monitoring Legitimate Bot Traffic is Now a Cybersecurity Requirement 

| | agentic systems, AI crawlers, API traffic, automated fraud, bot detection, bot management, bot mitigation, cost management, credential stuffing, Cybersecurity, Data Governance, ddos, denial of wallet, enforcement, governance, Intellectual Property, legal risk, legitimate bots, licensing, long term visibility, malicious bots, Monitoring, publishers, Rate Limiting, Scraping, Supply Chain Risk, Third Party Risk, traffic analytics, visibility
AI-driven and “legitimate” bots now make up a growing share of web traffic, blurring the line between value and risk. Security teams must treat bot traffic as a governance, cost, and cyber ...
Security Boulevard
SecOps DevSecOps Makes a Difference, but Uptake is Slow

The Verification Imperative: How One Framework Is Reshaping Trust in Financial Code

| | AI, Automation, DevSecOps, digital trust, governance
The software that moves money, processes trades, and manages accounts is among the most scrutinized code on earth. Yet even in highly regulated financial environments, a vulnerability persists that traditional perimeter security ...
Security Boulevard
Load more