Security news aggregator

Latest coverage for Strategy

Cybersecurity strategy guides how organizations prioritize risks, protect critical systems, and prepare for incidents, recovery, and resilience.

10 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Security strategy is the long-term direction an organization uses to manage information-security risk and support its business objectives. It sets priorities for protecting systems and data, assigns decision-making authority, defines acceptable risk, and guides investment in controls, skills, architecture, and suppliers. A sound strategy turns risk assessments and threat intelligence into measurable security outcomes rather than a disconnected list of tools.

For practitioners, strategy determines which assets and attack paths receive priority in vulnerability management, how privacy and regulatory obligations shape data handling, and what capabilities must exist for detection, containment, recovery, and testing. It should account for dependencies such as cloud services, software providers, identities, and legacy systems, while establishing review points as technology, threats, and business operations change. Effective governance links these choices to owners, budgets, metrics, and documented exceptions.

Showing 10 most recent headlines Filtered view
Bank Info Security 1 year, 2 months ago

AI Trust Is the New Cyber Currency

Estonia's Cyber Diplomat Tanel Sepp Urges Trust-First AI StrategyEstonia's Ambassador at Large for Cyber Diplomacy Tanel Sepp emphasizes the need for global cooperation and trust in AI adoption in digital economies. He discusses Estonia's whole-of-society model, the importance of regional partnerships and why digital sovereignty still lacks clear definition.

National Security Council's Bulazel to Reset Cyber Norms With Offensive StrategyNational Security Council's Alexei Bulazel told RSA attendees that offensive cyber tools must play a bigger role in U.S. defense. He called for a streamlined regulatory approach, more robust interagency coordination and a narrower role for CISA focused on critical infrastructure and civilian agencies.

Bank Info Security 1 year, 2 months ago

Strengthening AI Security With Platform Strategy

Palo Alto Networks' Nikesh Arora: Browser Security Will Surpass EDR in ImportanceAs enterprises rush to deploy AI across operations, Palo Alto Networks is securing models and agents through its platform approach and recent acquisitions. CEO Nikesh Arora predicts browser security will outpaceEDR as a foundational requirement.

Bank Info Security 1 year, 2 months ago

Misaligned Incentives Impede Zero Trust Implementation

Zero Trust Creator John Kindervag on Barriers to Security Success Beyond TechGrowing executive engagement with zero trust signifies a change from technical discussions to strategic business focus. Boards now view cybersecurity as fundamental to operations and seek solutions beyond products, said John Kindervag, creator of zero trust and chief evangelist, Illumio.

Bank Info Security 1 year, 2 months ago

US Homeland Secretary Kristi Noem Details Cyber Strategy

'Making America Safe Again Through Cyberdefense' Is Focus of Her RSAC Speech"Cybersecurity is national security," said U.S. Homeland Security Secretary Kristi Noem during an RSAC Conference speech detailing her agenda for revamping the Department of Homeland Security's approach to cybersecurity, including a streamlined Cybersecurity and Infrastructure Security Agency.