Security news aggregator

Latest coverage for Strategy

Cybersecurity strategy guides how organizations prioritize risks, protect critical systems, and prepare for incidents, recovery, and resilience.

11 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Security strategy is the long-term direction an organization uses to manage information-security risk and support its business objectives. It sets priorities for protecting systems and data, assigns decision-making authority, defines acceptable risk, and guides investment in controls, skills, architecture, and suppliers. A sound strategy turns risk assessments and threat intelligence into measurable security outcomes rather than a disconnected list of tools.

For practitioners, strategy determines which assets and attack paths receive priority in vulnerability management, how privacy and regulatory obligations shape data handling, and what capabilities must exist for detection, containment, recovery, and testing. It should account for dependencies such as cloud services, software providers, identities, and legacy systems, while establishing review points as technology, threats, and business operations change. Effective governance links these choices to owners, budgets, metrics, and documented exceptions.

Showing 11 most recent headlines Filtered view
Bank Info Security 1 year, 5 months ago

SailPoint's Public Return Highlights SaaS Growth Strategy

President Matt Mills Shares M&A Vision, Machine Identity Security, Market ExpansionSailPoint returns to the public markets, and President Matt Mills discusses the company's SaaS evolution and market expansion plans. He outlines how proceeds from the IPO will be used and highlights new tools for managing the growing risk from unmanaged machine identities.

The threat actors behind the RansomHub ransomware-as-a-service (RaaS) scheme have been observed leveraging now-patched security flaws in Microsoft Active Directory and the Netlogon protocol to escalate privileges and gain unauthorized access to a victim network's domain controller as part of their post-compromise strategy

Bank Info Security 1 year, 5 months ago

Cybereason CEO Sues to Halt Deadlock Over Critical Funding

Chapter 11 Looms as Eric Gan Seeks Custodian and Liberty, SoftBank Block FinancingCybereason faces a crisis as a boardroom deadlock halts financing efforts. CEO Eric Gan and his family firm seek a custodian to halt the impasse, alleging SoftBank and Liberty Strategic Capital are prioritizing control over the company’s financial stability. Without urgent funding, bankruptcy looms.

Cybersecurity Officials Launch Major Push for Zero Trust, Secure-By-Design ApproachThe Australian Signals Directorate's Australian Cyber Security Center released guidance on proactive cyber defense strategies to help organizations build a modern, defensible network architecture that's resilient to cyberattacks and designed to help minimize impact on critical systems and assets.

The Hacker News 1 year, 5 months ago

How to Steer AI Adoption: A CISO Guide

CISOs are finding themselves more involved in AI teams, often leading the cross-functional effort and AI strategy. But there aren’t many resources to guide them on what their role should look like or what they should bring to these meetings.  We’ve pulled together a framework for security leaders to help push AI teams and committees further in their AI adoption—providing them with the

Numerous systemic vulnerabilities could scuttle $5.4T industry Despite the escalating cyber threats targeting America's maritime transportation system, the US Coast Guard still lacks a comprehensive strategy to secure this critical infrastructure - nor does it have reliable access to data on cybersecurity vulnerabilities and past attacks, the Government Accountability Office (GAO) warns.…

Bank Info Security 1 year, 5 months ago

The Fallout on AI Chipmakers, Infrastructure From DeepSeek

Manufacturers May Have to Reassess Product Strategy to Maintain Competitive EdgeDeepSeek's entry into the AI market triggered a ripple effect, with a potential major impact on chipmakers. Shares of Nvidia, AMD and Intel took a hit immediately after the Chinese model's release and is forcing these silicon stalwarts to reassessment of their product strategies.