GRC stories - Page 5

As cyber risks and red tape surge, firms turn to ISO 27001 as a unified framework to tame fragmented compliance and build digital trust.

Mphasis tells CTOs to overhaul legacy cores as agentic AI scales, backing ontology-driven knowledge graphs to curb automated errors.

Rubrik and Rackspace launch UK Sovereign Cyber Recovery Cloud to restore vital services after ransomware while keeping data under UK control.

AI rollouts are eroding UK identity controls, as firms ease safeguards for machine accounts despite glaring gaps in oversight and governance.

Cambridge-based Finspector has rebuilt its AI platform to scan finfluencer videos, images and posts as UK regulators tighten oversight.

Keeper launches KeeperDB to centralise zero-trust database access, hiding credentials and recording sessions within its existing security vault.

A new Securitybridge index finds SAP Basis the weakest security layer, with just 58% of checks compliant across hardened systems.

Secure Code Warrior launches SCW Trust Agent: AI, giving security teams commit-level visibility and control over AI-influenced code.

Harness has launched AI Security and Secure AI Coding tools to spot and block vulnerabilities in AI-powered apps and AI-generated code.

Unlimited and Themis launch Complaints AI to help banks automate complaint analysis, spot emerging risks and meet tightening regulation.

1Password unveils Unified Access to secure AI agents and machine credentials, promising endpoint-to-agent visibility for security teams.

Deloitte has sold its audit software venture Auvenir to its management in a buyout, with the business rebranding as Streamworks Tech.

Cloud security startup Native launches from stealth with USD $42m to unify preventive, intent-based controls across major public clouds.

XM Cyber rolls out AI exposure mapping to track shadow AI, cloud models and MCP servers across hybrid estates in a single attack graph.

Black Kite weaves Open FAIR into its platform to automate financial loss estimates in third-party cyber risk assessments and reviews.

Secure Code Warrior launches SCW Trust Agent: AI to trace, rate and police AI-generated code risks directly at developers' commit point.

Proofpoint launches intent-based AI security to govern autonomous agents, promising real-time checks on behaviour across enterprise systems.

Verified trust leaders see 51% higher sign-ups, 43% less fraud and faster onboarding as AI-era identity moves from static gate to dynamic fabric.

CISOs now face a dual AI mandate: securing fast‑growing AI systems while deploying AI to transform and harden enterprise defences.

SailPoint strikes multi-year AWS deal to govern fast-growing AI agent identities with unified controls across human and machine access.