The challenge of identity management for AI agents centers on the question: What kind of identity should your AI agent ...

Learn CIEM and secure cloud access best practices: effective identity visibility, least-privilege, zero‑standing privileges, ...

Why do organizations migrate to the public cloud? It may sound like a simple question in 2025, but there’s complexity to it.

“Security can only be achieved through collaboration, not confrontation” is one of the defining principles of DevSecOps.Essentially, security is a team sport that requires various organizational roles ...

Copilot Studio is Microsoft’s no-code platform for AI Agents. But AI agents aren’t safe by design. Explore how an agent built ...

Discover why VMware ESXi is now a ransomware target and learn essential hypervisor security strategies to safeguard your ...

This publication provides a detailed red teaming framework for Agentic AI. It explains how to test critical vulnerabilities across dimensions like permission escalation, hallucination, orchestration ...

Learn how penetration testing uncovers vulnerabilities, boosts compliance, and improves breach response for a more proactive ...

This report uses the threats identified in CSA’s Top Threats to Cloud Computing 2024 to reflect on eight recent cybersecurity breaches. Notable incidents covered include the Snowflake data breach ...

Erik Johnson. Cloud Security Specialist & Senior Research Analyst, CSA. Worked for the Federal Reserve for many years and volunteered with the CSA with a focus on CCM/CAIQ V4, specifically the STA ...

Written by John Kamenik, Principal DevSecOps Engineer, Gomboc. For years, DevSecOps has aimed to integrate security seamlessly into every phase of the software development lifecycle. Despite major ...

Explore six key cloud security trends for 2025 and learn how to address identity risks, visibility gaps, and misaligned ...