Security news aggregator

Latest coverage for Security Posture Management

Security posture management assesses an organization's defenses, identifies gaps, and helps prioritize fixes that reduce exposure to cyberattacks.

28 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Security posture management is the ongoing assessment and improvement of an organization’s security configuration, controls, and exposure across cloud services, endpoints, identities, applications, and data. It typically inventories assets, checks settings against policy, identifies vulnerabilities or excessive access, and tracks whether remediation is completed. Related terms such as cloud, SaaS, and attack-surface posture management describe narrower scopes of the same discipline.

Its security value depends on accurate asset discovery and useful prioritization: an exposed storage resource, weak identity control, or unpatched internet-facing system may warrant faster action than a lower-risk policy deviation. Effective programs detect configuration drift, correlate findings with exposure and threat intelligence, assign accountable owners, and verify fixes rather than merely reporting them. Practitioners should also assess what telemetry is collected and retained, since posture platforms can access sensitive configuration, identity, and inventory data; least-privilege access and appropriate privacy controls are therefore material.

Volume over time

Weekly headline count for the current query.

Showing 20 most recent headlines of 28 Filtered view
Bank Info Security 1 month, 2 weeks ago

Why Firms Struggle With Vendor Security After They Sign

Study: Monitoring Vendor Risk Remains Much Harder Than Onboarding Third PartiesHealthcare organizations are getting better vetting third-party vendors, including suppliers of medical devices, software and other products. But once these vendors are on board, healthcare firms still struggle with monitoring their security posture and ensuring they keep their promises.

Deal Would Boost Veeam's Cyber Footprint as Data Protection Vendor Valuations SurgeBloomberg reported that data protection and ransomware recovery giant Veeam is in advanced talks to buy DSPM and AI security vendor Securiti for $1.8 billion, with an announcement coming as soon as this week. The deal would accelerate Veeam's pivot from backup and disaster recovery to cybersecurity.

Deal Would Boost Veeam's Cyber Footprint as Data Protection Vendor Valuations SurgeBloomberg reported that data protection and ransomware recovery giant Veeam is in advanced talks to buy DSPM and AI security vendor Securiti for $1.8 billion, with an announcement coming as soon as this week. The deal would accelerate Veeam's pivot from backup and disaster recovery to cybersecurity.

Firm Hits $6B Valuation, Eyes Fast Delivery of Unified DSPM, DLP and Identity ToolsCyera’s latest $540 million Series E funding underscores growing urgency among global firms to secure sensitive data before feeding it into AI models. With demand soaring, the startup is investing heavily in DSPM, DLP and identity innovation across cloud and on-prem environments.

Bank Info Security 1 year, 1 month ago

Behavior Data Now Key to Cyber Risk Posture

Frost & Sullivan's Stahnke on How Human Risk Insights Drive Better Threat ResponseLegacy cybersecurity training often fails because users skip the content or treat it as a compliance task. Forward-looking organizations now recognize that human behavior is a critical piece of their security posture, said Claudio Stahnke, industry analyst at Frost & Sullivan.

Deal Aims to Target Identity and AI Risks, SaaS Blind Spots With Unified SecurityBy acquiring Suridata, Fortinet plans to introduce SaaS Security Posture Management to its SASE platform. The update provides end-to-end visibility into SaaS apps, identity threats and AI plugin misuse, making SSPM a vital control plane in cloud-first security strategies.

Bank Info Security 1 year, 2 months ago

Cyberhaven Taps Product Chief Nishant Doshi as Interim CEO

CEO Howard Ting's Resignation Comes as Data Protection Company Hits $1B ValuationCyberhaven appointed product chief Nishant Doshi as interim CEO as longtime leader Howard Ting transitions to the board. With a sevenfold valuation increase and deep investment in Gen AI security and DSPM, the company is preparing to unify data controls across enterprises.

Bank Info Security 1 year, 2 months ago

ISMG Editors: Day 1 Highlights From RSAC Conference 2025

Panel Shares Latest Buzz on Agentic AI, Deepfakes and Rise of Machine IdentitiesISMG editors share highlights from Day 1 of the RSAC Conference 2025 in San Francisco, including the state of the economy, trends around M&A, artificial intelligence and agentic AI, deepfakes, data security posture management, enterprise and consumer browsers, and machine identities.

Bank Info Security 1 year, 3 months ago

Cyberhaven's $100M Raise Targets Gen AI, DSPM Capabilities

Integrated Tools Across Generative AI Security, DSPM, DDR Key to Growth StrategyCyberhaven is building a data security platform to address evolving risks in generative AI, DSPM and beyond. Backed by $100 million, CEO Howard Ting says the firm will use the funds to expand its portfolio and go-to-market footprint while staying independent.

Data Security Posture Management Becomes Key to Cloud Visibility But Lacks ControlsThe rapid rise of DSPM has fueled deals by major security firms looking to enhance their platforms. Industry leaders see DSPM as crucial for cloud data visibility, security integration and regulatory compliance. But can standalone DSPM vendors survive, or will they be absorbed by larger platforms?

Data Security Posture Management Becomes Key to Cloud Visibility But Lacks ControlsThe rapid rise of DSPM has fueled deals by major security firms looking to enhance their platforms. Industry leaders see DSPM as crucial for cloud data visibility, security integration and regulatory compliance. But can standalone DSPM vendors survive, or will they be absorbed by larger platforms?

Buy of Application Security Startup Enhances Code-to-Cloud Vulnerability ManagementWiz acquired application security posture management startup Dazz for $450 million to provide enterprises with a unified code-to-cloud solution. CEO Merav Bahat highlights how this partnership will streamline vulnerability management and strengthen remediation capabilities for global organizations.

Cyera's Valuation Doubles Amid Expansion From DSPM to DLP, Identity ProtectionCyera secures $300M in funding from Accel and Sapphire Ventures, doubling its valuation to $3 billion. The company is enhancing its data security platform by integrating DSPM with DLP and identity security capabilities, addressing enterprise demand for comprehensive solutions.

Purchasing Israeli Startup Will Expand SaaS Security and Identity Threat ProtectionCrowdStrike has agreed to acquire SaaS security leader Adaptive Shield to deliver identity-based protection across cloud and hybrid environments. The acquisition offers clients comprehensive SaaS security posture management, bridging on-premises and cloud identity defenses to thwart modern threats.

Normalyze’s AI-Powered DSPM Technology Boosts Proofpoint’s Data Visibility, ControlProofpoint will acquire DSPM startup Normalyze to strengthen its data security offerings across cloud, SaaS and hybrid environments. The company aims to give security teams enhanced visibility, control and human-centric risk reduction for sensitive data across complex infrastructures.

Bank Info Security 1 year, 9 months ago

ISMG Editors: DSPM, DLP Converge to Reshape Data Security

Also: Impact of NIS2 Directive in Europe, Cloud Governance ChallengesIn the latest weekly update, ISMG editors discussed the strategic convergence of data security posture management and data loss prevention technologies, evolving priorities of security leaders and the urgent readiness challenges posed by the NIS2 Directive.

Trail Acquisition Brings Enhanced DLP, DSPM Integration, Safeguards Data in MotionWith the $162 million buy of Trail Security, Cyera will offer customers AI-enhanced data loss prevention alongside its DSPM solution. The new platform promises stronger, real-time data protection for sensitive information both in motion and at rest, helping enterprises meet security demands.

Integration of DSPM Firm Dasera Enhances Data Protection Across Cloud EnvironmentsNetskope’s purchase of Desera enhances its data security posture management capabilities, enabling customers to secure both structured and unstructured data across cloud and on-premises environments. The integration will offer a platform for holistic data protection and security posture management.

Bank Info Security 2 years, 1 month ago

FCC Advances BGP Security Rules for Broadband Providers

Regulatory Body Approves Notice of Proposed Rulemaking Targeting BGP HijackingThe U.S. Federal Communications Commission unanimously approved a notice of proposed rulemaking that would require major U.S. internet providers to establish and submit confidential Border Gateway Protocol security plans each year amid as it aims to shore up the internet’s overall security posture.

Loading more headlines...