Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

EP 23 - Red teaming AI governance: catching model risk early

Jan 14, 2026 By CyberArk In CyberArk
AI systems are moving fast, sometimes faster than the guardrails meant to contain them. In this episode of Security Matters, host David Puner digs into the hidden risks inside modern AI models with Pamela K. Isom, exploring the governance gaps that allow agents to make decisions, recommendations, and even commitments far beyond their intended authority.
View Video
miniorange

Identity Assurance: Reinventing Trust in a Cyber-First World

Jan 9, 2026 By Chaitali Avadhani In miniOrange
Identity is everything. Hamper it, and the individual is left with disrupted privacy, reputation damage, and endless fraud. Attackers are always on the lookout for access to resources and accounts via identity theft, credential theft, and Account Takeover Attacks (ATO). So, it is paramount to leverage solutions that securely link a user’s identity with who they claim to be. Identity assurance offers frameworks, components, and best practices to safeguard modern-day identities.
Read Post
cyberark

Inside CyberArk Labs: the evolving risks in AI, browsers and OAuth

Jan 8, 2026 By Andy Thompson In CyberArk
In 2025, we saw attackers get bolder and smarter, using AI to amplify old tricks and invent new ones. The reality is, innovation cuts both ways. If you have tools, AI is going to make them even more dangerous. Last year proved that every leap forward in technology brings new risks right alongside the rewards. At CyberArk Labs, our mission is to uncover hidden vulnerabilities and provide actionable insights that help organizations fortify their defenses.
Read Post
miniorange

Access Governance: How to Track Access, Approvals, and Revocation with Audit Logs

Jan 8, 2026 By Pallavi Narang In miniOrange
As organizations continue to adopt more SaaS applications, managing access across those systems has quietly become one of the most complex operational challenges for IT teams. Identity providers, collaboration tools, cloud platforms, and business applications all have their own access models, their own admins, and their own ways of tracking permissions. In most organizations, there still isn’t a truly streamlined or automated way to handle access end to end.
Read Post
cyberark

Will AI agents 'get real' in 2026?

Jan 6, 2026 By Kaitlin Harvey In CyberArk
In my house, we consume a lot of AI research. We also watch a lot—probably too much—TV. Late in 2025, those worlds collided when the AI giant Anthropic was featured on “60 Minutes.” My husband tried to scroll past it, but I snatched the controller away, unable to resist a headline calling out the first widely acknowledged case of an “agentic AI cyberattack.” The framing itself was irresistible, a milestone moment in the rapid acceleration of AI.
Read Post

Tame the Vault Sprawl: Bring All Your Secrets Under Control in 60 Seconds

Jan 6, 2026 By CyberArk In CyberArk
This 60-second video highlights the growing challenge of secret sprawl—developer-created vaults, duplicate credentials, and inconsistent security policies scattered across cloud environments. It shows how this fragmentation increases risk, complicates compliance, and opens the door to breaches. The video introduces CyberArk Secrets Hub as the solution: a centralized, policy-driven platform that unifies visibility, enforces standards, automates rotation, and preserves existing cloud-native and HashiCorp workflows. The result? Simplified oversight, stronger security, and audit-ready operations.
View Video
miniorange

Zero Trust Implementation: Why it Matters and How to Implement

Jan 5, 2026 By Minal Purwar In miniOrange
Zero Trust is a security mindset and architecture that assumes no user, device, or network is inherently trustworthy, requiring continuous verification for every access request. Unlike a single tool or product, it requires a holistic strategy that integrates strong identity controls, such as MFA and least privilege access. Success with Zero Trust hinges on cultural shifts, executive buy-in, and ongoing adaptation to threats that emerge beyond the initial setup.
Read Post
miniorange

PunchOut Integration with Shopify: Everything You Need To Know

Jan 2, 2026 By Saloni Walimbe In miniOrange
B2B buyers today expect corporate procurement to feel as seamless as shopping online on any modern ecommerce store, but with the higher control, stronger compliance, and streamlined approval workflows their companies require. They don’t want to toggle between supplier websites, manually handle product details, or deal with pricing inconsistencies.
Read Post
cyberark

EP 22 - Security at the speed of innovation: Breaking down legacy barriers

Dec 30, 2025 By CyberArk In CyberArk
How are defenders supposed to keep up when attackers move at the speed of AI? In this episode of Security Matters, host David Puner welcomes Rick McElroy, founder and CEO of Nexasure, for a candid conversation about cybersecurity’s breaking point. Together, they unpack the realities of defending organizations in an era of identity sprawl, machine risk, agentic AI, and relentless automation.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.