New & Notable
News
Lost in translation: Cybersecurity board reporting for CISOs
Cybersecurity board reports don't always land. At the Security and Risk Management Summit 2026, Gartner analysts suggested a novel way to communicate cyber-risk to corporate directors.
Problem Solve
How to find cyber-risk data sources for a FAIR analysis
Cyber-risk quantification with FAIR can change the game for CISOs -- but sourcing enough accurate data for analysis can feel impossible. Learn how and where to find it.
News
Gartner Security & Risk Management Summit 2026: Adapting for AI
Check out SearchSecurity's Gartner Security & Risk Management Summit guide for reports on notable presentations and sessions on the latest security topics.
Manage
How to secure data at rest, in use and in motion
Data is the lifeblood of modern commerce; securing it properly requires a top-level, strategic commitment that dovetails with risk management and competitive advantage.
Trending Topics
-
Data Security & Privacy Manage
How to secure data at rest, in use and in motion
Data is the lifeblood of modern commerce; securing it properly requires a top-level, strategic commitment that dovetails with risk management and competitive advantage.
-
Threats & Vulnerabilities Manage
Inside business email compromise attacks: Real-world examples
From tech giants to nonprofits, no organization is immune to trust-eroding business email compromise attacks. Learn more about BEC scams and the fallout when employees get tricked.
-
IAM Manage
Identity security for AI agents: The proliferation challenge
Identity teams can accelerate AI adoption with strong security foundations. But managing nondeterministic AI agents is different from securing human identities and traditional NHIs.
-
Analytics & Automation Evaluate
What every CISO should consider before a SIEM migration
Before starting a SIEM migration, the security team must identify the data, rules, workflows and policies they need to transition to the new tool or service. Here's how to get started.
-
Network Security Evaluate
The enterprise case for zero trust
When applied correctly, zero trust can minimize an organization's attack surface. Experts weigh in on the best use cases where zero trust can deliver results.
-
Operations & Management News
Lost in translation: Cybersecurity board reporting for CISOs
Cybersecurity board reports don't always land. At the Security and Risk Management Summit 2026, Gartner analysts suggested a novel way to communicate cyber-risk to corporate directors.
Sponsored Sites
-
Security
One Identity | Integrated Cybersecurity for all Your Identities
Learn how One Identity provides integrated cybersecurity solutions, delivering a truly unified identity platform and streamlining management across on-premises and cloud resources.
-
Artificial Intelligence
Intel & Red Hat: Leading the way in Enterprise AI
Combining Intel’s silicon experience with Red Hat’s software innovation to enable AI-driven hybrid multi-cloud solutions.
-
IT Workflows
Transform Your Organization With Modern and Resilient IT Services
Learn how ServiceNow’s IT solutions can help your organization seize the upside of operational resilience and raise employee agility.
Topics Covered
Application and platform security
Careers and certifications
Cloud security
Compliance
Data security and privacy
Identity and access management
Network security
Risk management
Security analytics and automation
Security operations and management
Threat detection and response
Threats and vulnerabilities
Featured Authors
Find Solutions For Your Project
-
Evaluate
Security platformization vs. best-of-breed: Risks and benefits
With tool sprawl pushing costs and complexity to a breaking point, the choice between unified security platforms and best-of-breed tools has never been more critical.
-
SOC vs. MDR: What CISOs need to consider
-
How to implement zero trust for AI
-
The breakup: Why CISOs are decoupling data from their SIEMs
-
-
Problem Solve
How to find cyber-risk data sources for a FAIR analysis
Cyber-risk quantification with FAIR can change the game for CISOs -- but sourcing enough accurate data for analysis can feel impossible. Learn how and where to find it.
-
EO 14390 raises stakes for enterprise cybersecurity
-
Inside business email compromise attacks: Real-world examples
-
Identity security for AI agents: The proliferation challenge
-
-
Manage
How to secure data at rest, in use and in motion
Data is the lifeblood of modern commerce; securing it properly requires a top-level, strategic commitment that dovetails with risk management and competitive advantage.
-
How to prepare security controls for future AI regulations
-
How to operationalize a strong cyber-resilience plan
-
What CISOs need to know about AI audit logs
-
Information Security Basics
-
Get Started
SOC vs. MDR: What CISOs need to consider
Security operations centers and managed detection and response providers differ in how they manage threats. What's the best way to choose between a SOC and MDR service?
-
Get Started
CISO's guide: How to test an incident response plan
Creating an incident response plan is only the beginning. Regular testing will help ensure it doesn't fall apart during a real cybersecurity event.
-
Get Started
Buyer's guide for CISOs: Cloud security posture management
Cloud security posture management is a critical component of cloud defense strategy. Need help choosing a CSPM platform? This guide lists key features and platforms to consider.
Multimedia
-
News
View All -
Security operations and management
Lost in translation: Cybersecurity board reporting for CISOs
Cybersecurity board reports don't always land. At the Security and Risk Management Summit 2026, Gartner analysts suggested a novel way to communicate cyber-risk to corporate directors.
-
‘Don’t panic’: AI reality checks dominate major cybersecurity conference
CISOs and their colleagues should focus on network security basics, not overhyped AI promises, analysts said at a Gartner cybersecurity event.
-
Cyber insurance rates are dropping, but exclusions widen
Cyber insurance coverage is slowly changing, and some policies may not provide coverage for social engineering attacks like ClickFix.
Search Security Definitions
- What is identity and access management? Guide to IAM
- What is data masking?
- What is antivirus software?
- What is a stealth virus and how does it work?
- What is file integrity monitoring (FIM)?
- What is information security (infosec)?
- What is governance, risk and compliance (GRC)?
- What is integrated risk management (IRM)?