GRC stories

Isaca launches AI risk certification as European research finds many organisations still lack clear ownership, response plans and board oversight.

CrowdStrike unveils AI security coalition with Accenture, EY, IBM Cybersecurity Services, Kroll and OpenAI to spot and fix code flaws faster.

Temenos and Bain warn that banks must modernise core systems, governed data and cloud architecture as AI, stablecoins and personalisation gather pace.

Thrive widens post-Abacode push with managed compliance service for firms facing tougher rules and cyber risk.

Lineaje survey flags a widening governance gap as most firms use AI-generated code, yet few can fully see or track it.

Gigamon rolls out AI traffic intelligence and agentic observability software as IDC sees the network monitoring market reaching USD $4.39 billion by 2029.

LevelBlue says unsanctioned AI agents are slipping into enterprise systems, creating a hidden governance and security blind spot for businesses.

ServiceNow bolsters cyber security push with Armis buyout, adding real-time asset visibility and deepening its platform after Veza.

HackerOne unveils h1 Validation as vulnerability reports surge 76% and AI tools speed up discovery, leaving firms struggling to triage real threats.

CIS, Astrix and Cequence publish AI security guides for large language models, autonomous agents and MCP environments.

Zero Networks adds AI segmentation and compliance controls to help firms block shadow AI, limit agent spread and tighten network access.

AI models that can hunt and chain software flaws are forcing boards to rethink cyber defences, while scrutiny grows over Anthropic's MCP design risks.

CIQ rolls out Enterprise Linux compliance stack as federal cryptography, defence contractor and post-quantum rules tighten from 2026.

Cork Cyber boosts Cork Vantage for MSPs with automated mapping, cutting manual work and improving asset accuracy across client, device and inbox records.

Spektr lands USD $20 million Series A from NEA as Copenhagen AI compliance platform targets manual checks at banks and fintechs.

Sentra and Wiz link cloud risk findings to sensitive data, helping security teams prioritise the alerts most likely to expose PII, PHI or IP.

IBM rolls out assessment and multi-agent security services to help large organisations spot AI-driven weaknesses and speed up remediation across complex systems.

Qlik adds trust scores, service levels and anomaly detection to data products as chief executive officer Mike Capone warns weak data can drive AI risk.

Keeper Security adds approval workflows and audit logging to Endpoint Privilege Manager as enterprises tighten control over temporary admin access.

Tenable adds OT asset discovery to exposure management platform, helping IT teams spot hidden connected devices and cyber-physical risks.