#it-controls
#it-controls

10 Data Security Stories to Know About (March 2026)

March saw significant data security incidents including cyberattacks, data purchases by the FBI, and breaches affecting millions of customers.

Boards Are Falling Short on Cybersecurity

Boards recognize the need for cybersecurity investments, yet the worsening cybercrime situation suggests governance may be deteriorating.

fromThe Hacker News

Why Third-Party Risk Is the Biggest Gap in Your Clients' Security Posture

Third-party risk management is now a critical security challenge and growth opportunity for service providers.

Stakeholder Confidence in the Age of Digital Threats: PR as a Security Asset

Cybersecurity involves both technical measures and effective communication to maintain stakeholder trust during incidents.

Cybersecurity M&A Roundup: 38 Deals Announced in March 2026

Thirty-eight cybersecurity-related M&A deals were announced in March 2026, including significant acquisitions by Airbus, AppViewX, Cellebrite, and Databricks.

5 IT Mistakes That Still Catch Small Businesses Off Guard

Cybersecurity is a critical concern for SMEs, yet many underestimate the risks and only seek help after incidents occur.

Privacy professionals

10 Data Security Stories to Know About (March 2026)

March saw significant data security incidents including cyberattacks, data purchases by the FBI, and breaches affecting millions of customers.

Boards Are Falling Short on Cybersecurity

Boards recognize the need for cybersecurity investments, yet the worsening cybercrime situation suggests governance may be deteriorating.

fromThe Hacker News

Why Third-Party Risk Is the Biggest Gap in Your Clients' Security Posture

Third-party risk management is now a critical security challenge and growth opportunity for service providers.

Stakeholder Confidence in the Age of Digital Threats: PR as a Security Asset

Cybersecurity involves both technical measures and effective communication to maintain stakeholder trust during incidents.

Cybersecurity M&A Roundup: 38 Deals Announced in March 2026

Thirty-eight cybersecurity-related M&A deals were announced in March 2026, including significant acquisitions by Airbus, AppViewX, Cellebrite, and Databricks.

AWS Security and Compliance Quiz (25 Questions) with Detailed Answers - Cloud Practitioner Guide

Understanding AWS security services is essential for modern applications running on AWS.

fromAmazon Web Services

Streamlining Cloud Compliance at GoDaddy Using CDK Aspects | Amazon Web Services

CDK Aspects enable organization-wide policy enforcement in AWS infrastructure as code, enhancing compliance and security during the development process.

AWS Security and Compliance Quiz (25 Questions) with Detailed Answers - Cloud Practitioner Guide

Understanding AWS security services is essential for modern applications running on AWS.

fromAmazon Web Services

Streamlining Cloud Compliance at GoDaddy Using CDK Aspects | Amazon Web Services

CDK Aspects enable organization-wide policy enforcement in AWS infrastructure as code, enhancing compliance and security during the development process.

more#aws

#ai-governance

Your AI governance gap is bigger than you think | MarTech

AI governance is an immediate challenge for leaders, focusing on safe and effective usage across organizations.

EU data protection

AI-driven identity must exist in a robust compliance framework | Computer Weekly

Artificial intelligence

Securing AI agents: Okta's approach to identity governance

Artificial intelligence

AI regulations are already out of date - IT leaders need to think ahead

Your AI governance gap is bigger than you think | MarTech

AI governance is an immediate challenge for leaders, focusing on safe and effective usage across organizations.

EU data protection

AI-driven identity must exist in a robust compliance framework | Computer Weekly

Governance must precede AI adoption to avoid compliance failures and ethical risks in identity verification systems.

Securing AI agents: Okta's approach to identity governance

Organizations must govern AI identities to mitigate security risks while embracing AI for competitiveness.

AI regulations are already out of date - IT leaders need to think ahead

Establishing a solid AI governance foundation now can ease future compliance with evolving AI regulations.

more#ai-governance

All shook up, IFS unlocks asset-based pricing for enterprise AI

IFS introduces an outcomes-based pricing model for enterprise AI, aligning software costs with operational assets instead of user counts.

Design

Intellectual property law

Panel: Taking Architecture Out of the Echo Chamber

Architecture's importance is growing, necessitating a shift in practice to avoid past mistakes and engage with broader conversations.

Science

fromSilicon Canals

12 hours ago

SpaceX, Amazon, and Google want orbital data centers - four engineering barriers reveal who really benefits - Silicon Canals

Orbital data centers will concentrate AI infrastructure power among a few dominant companies, limiting access for smaller competitors and national regulators.

fromNextgov.com

fromElectronic Frontier Foundation

Trade and industry groups warn of risks in GSA's draft AI procurement guidance

Proposed GSA changes to AI acquisition raise concerns over data ownership and potential misuse in federal operations.

Privacy professionals

Tech Nonprofits to Feds: Don't Weaponize Procurement to Undermine AI Trust and Safety

The U.S. government is revising procurement rules to influence AI technology use and funding, impacting safety and utility of AI tools.

Portland

fromTheregister

Contractor quaffed his way to Y2K compliance

Y2K preparations included humorous incidents, with a contractor enjoying beers while ensuring systems were ready for the millennium change.

OutSystems focuses on control and consistency in AI projects

OutSystems introduces Agentic Systems Engineering to enhance coherence and control in AI development, addressing fragmentation and integration challenges.

#genai

Data science

AI project 'failure' has little to do with AI

The reliability of genAI is compromised by various factors, necessitating independent verification of its outputs.

Architectural Governance at AI Speed

GenAI accelerates code production, challenging traditional oversight and necessitating a blend of centralized decision-making with automated governance for architectural cohesion.

Data science

AI project 'failure' has little to do with AI

The reliability of genAI is compromised by various factors, necessitating independent verification of its outputs.

Architectural Governance at AI Speed

GenAI accelerates code production, challenging traditional oversight and necessitating a blend of centralized decision-making with automated governance for architectural cohesion.

Oracle close to finalizing financing for Michigan data center

Oracle is finalizing $16 billion financing for a new Michigan data center to support AI applications, amid complex funding challenges.

Dutch cloud providers join forces to create a sovereign alternative

Seven Dutch cloud providers are collaborating to enhance digital autonomy and counter American hyperscalers' dominance.

Enterprises demand cloud value

Businesses are shifting from cost-cutting to establishing centers of excellence and finops to enhance ROI in cloud investments.

European startups

Dutch cloud providers join forces to create a sovereign alternative

Seven Dutch cloud providers are collaborating to enhance digital autonomy and counter American hyperscalers' dominance.

Enterprises demand cloud value

Businesses are shifting from cost-cutting to establishing centers of excellence and finops to enhance ROI in cloud investments.

more#cloud-computing

fromNextgov.com

HHS reverses Biden-era restructuring of its IT and tech operations

HHS Chief Information Officer Clark Minor stated that consolidating the CTO, CDO, and CAIO roles within his office allows the department to move faster on shared platforms and protect systems more effectively.

Healthcare

Business

fromFortune

How Dell reinvented itself as an AI-server powerhouse - and what its CFO is building next | Fortune

Dell Technologies has shifted focus to AI infrastructure, recording significant growth in AI server orders and rethinking finance operations with AI agents.

A core infrastructure engineer pleads guilty to federal charges in insider attack

Rhyne's attack involved unauthorized remote desktop sessions, deletion of network administrator accounts, and changing of passwords, showcasing significant security vulnerabilities.

Information security

Google gives enterprises new controls to manage AI inference costs and reliability

Gemini API introduces Flex and Priority tiers for managing AI inference workloads based on criticality and cost.

#ai

Kyndryl Launches Service for Managing and Automating AI Agents

Kyndryl launched Agentic Service Management to help organizations prepare IT environments for autonomous AI agents, addressing gaps in current systems.

fromwww.businessinsider.com

McKinsey's new AI leadership playbook: flatten teams and move faster

AI can streamline organizational structures by flattening management layers and enhancing decision-making capabilities.

Silent Drift: How LLMs Are Quietly Breaking Organizational Access Control

AI assistance in policy as code can introduce serious flaws, leading to incorrect access permissions despite syntactically valid policies.

JFrog Artifactory: how to secure binaries in the AI era

AI-generated code is creating a security crisis that traditional methods cannot manage, necessitating a new approach to binary management.

Artificial intelligence

AI Agents Act a Lot Like Malware. Here's How to Contain the Risks.

Kyndryl Launches Service for Managing and Automating AI Agents

Kyndryl launched Agentic Service Management to help organizations prepare IT environments for autonomous AI agents, addressing gaps in current systems.

fromwww.businessinsider.com

McKinsey's new AI leadership playbook: flatten teams and move faster

AI can streamline organizational structures by flattening management layers and enhancing decision-making capabilities.

Silent Drift: How LLMs Are Quietly Breaking Organizational Access Control

AI assistance in policy as code can introduce serious flaws, leading to incorrect access permissions despite syntactically valid policies.

JFrog Artifactory: how to secure binaries in the AI era

AI-generated code is creating a security crisis that traditional methods cannot manage, necessitating a new approach to binary management.

Artificial intelligence

AI Agents Act a Lot Like Malware. Here's How to Contain the Risks.

What Does It Take to Be an Outstanding CSO or CISO?

Outstanding security leaders often come from non-traditional backgrounds, with 40% of recent CSO-CISO Hall of Fame honorees starting in the private sector.

fromSearch Unified Communications

Why Code Validation is the Next Frontier - DevOps.com

Shared staging environments are inadequate for modern development; isolated, on-demand setups are needed for effective validation.

Remote teams

Why IT leaders must prioritize hybrid work accessibility | TechTarget

Organizations must prioritize the needs of disabled employees in return-to-office plans to maintain remote job opportunities.

fromTNW | Insights

6 hours ago

KeeperDB brings zero-trust database access to privileged access management

Database credentials are a major attack vector, and KeeperDB integrates access controls into its PAM platform to enhance security.

Understanding Kubernetes Architecture is a MUST

Understanding Kubernetes architecture is essential for effective cloud-native deployment and troubleshooting.

Kubernetes Scared Me Too - Until I Actually Understood It A no-fluff intro for devs who keep

Kubernetes simplifies container orchestration, managing deployment, scaling, and traffic routing for applications across multiple servers.

Understanding Kubernetes Architecture is a MUST

Understanding Kubernetes architecture is essential for effective cloud-native deployment and troubleshooting.

Kubernetes Scared Me Too - Until I Actually Understood It A no-fluff intro for devs who keep

Kubernetes simplifies container orchestration, managing deployment, scaling, and traffic routing for applications across multiple servers.

more#kubernetes

fromFuturism

8 hours ago

AI Is Killing Microsoft

OpenAI shifts focus to enterprise and coding, abandoning less profitable projects to mitigate financial losses.

#ai-agents

Kilo targets shadow AI agents with a managed enterprise platform

KiloClaw for Organizations enhances AI agent management with centralized governance, addressing security and compliance concerns for enterprises.

fromTheregister

Oracle: AI agents decide and act. Liability question remains

Oracle is developing AI agents for its cloud applications, enabling autonomous decision-making in business processes, but analysts advise caution due to integration and liability concerns.

Kilo targets shadow AI agents with a managed enterprise platform

KiloClaw for Organizations enhances AI agent management with centralized governance, addressing security and compliance concerns for enterprises.

fromTheregister

Oracle: AI agents decide and act. Liability question remains

Oracle is developing AI agents for its cloud applications, enabling autonomous decision-making in business processes, but analysts advise caution due to integration and liability concerns.

more#ai-agents

fromNextgov.com

Agency CIOs must supply top-down IT contract information, OMB memo states

What we want to do is make sure that CIOs are fully empowered to be there at the beginning of conversations, that they are part of the formulation of budget and policy from liftoff.

Privacy professionals

The Trust Tax Framework: Measuring Developer Confidence in CI/CD Systems - DevOps.com

Test infrastructure credibility is crucial; developers lose trust when re-run rates exceed 30% and override rates surpass 5%.

Fair Multitenancy-Beyond Simple Rate Limiting

Fair multitenancy ensures equitable infrastructure access for customers, balancing simplicity, performance, and safety in shared environments.

#ai-adoption

10 hours ago

Managing AI has become its own job

Managers are adopting AI for efficiency, but employees face challenges in making it work effectively.

AI won't fix your company

The gap in AI adoption within organizations stems from people issues, not technology, emphasizing the need for a supportive culture.

10 hours ago

Managing AI has become its own job

Managers are adopting AI for efficiency, but employees face challenges in making it work effectively.

AI won't fix your company

The gap in AI adoption within organizations stems from people issues, not technology, emphasizing the need for a supportive culture.

more#ai-adoption

#ai-strategy

fromeLearning Industry

AI Strategy Roadmap: A Step-By-Step Plan From Pilot To Scale

A clear AI strategy roadmap is essential for transforming pilot projects into scalable, impactful enterprise-wide initiatives.

6 days ago

Best AI Strategy Consulting Firms for Enterprise Companies in 2026

AI strategy consulting is essential for enterprises to align AI efforts with real operations and overcome fragmentation by 2026.

fromZDNET

Artificial intelligence

8 urgent updates your IT playbook needs to survive the AI era

fromeLearning Industry

AI Strategy Roadmap: A Step-By-Step Plan From Pilot To Scale

A clear AI strategy roadmap is essential for transforming pilot projects into scalable, impactful enterprise-wide initiatives.

6 days ago

Best AI Strategy Consulting Firms for Enterprise Companies in 2026

AI strategy consulting is essential for enterprises to align AI efforts with real operations and overcome fragmentation by 2026.

fromZDNET

Artificial intelligence

8 urgent updates your IT playbook needs to survive the AI era

The ERP that doesn't care which AI you use, and why that's smart

NetSuite announced three new AI Connector Service extensions, emphasizing a strategic shift towards openness and integration with external AI models.

fromTNW | Offers

6 hours ago

NinjaOne free trial. Test the unified IT operations platform

NinjaOne is a unified IT operations platform that consolidates multiple IT management functions into a single cloud-native console.

#artificial-intelligence

fromTNW | Artificial-Intelligence

Human-governed AI. How Fortis Solutions is building trust in intelligent infrastructure

AI is reshaping work while emphasizing the necessity of human governance and intention in technology.

fromEntrepreneur

Forget the Hype. Here's How AI Is Actually Changing Business Operations

AI is transforming business operations from task automation to strategic decision intelligence.

fromTNW | Artificial-Intelligence

Human-governed AI. How Fortis Solutions is building trust in intelligent infrastructure

AI is reshaping work while emphasizing the necessity of human governance and intention in technology.

fromEntrepreneur

more#artificial-intelligence

Forget the Hype. Here's How AI Is Actually Changing Business Operations

AI is transforming business operations from task automation to strategic decision intelligence.

Mobile Attack Surface Expands as Enterprises Lose Control

Mobile device security is inadequate, with many organizations using critically outdated operating systems and exposing sensitive data to potential attacks.

IGEL breaks down the wall between IT and OT

IGEL is enhancing security and manageability in OT environments through its platform and Preventative Security Model.

IGEL introduces reference architectures for secure cloud desktops

IGEL and Microsoft provide reference architectures for secure access to Windows 365 and Azure Virtual Desktop, focusing on high-security sectors.

IGEL breaks down the wall between IT and OT

IGEL is enhancing security and manageability in OT environments through its platform and Preventative Security Model.

IGEL introduces reference architectures for secure cloud desktops

IGEL and Microsoft provide reference architectures for secure access to Windows 365 and Azure Virtual Desktop, focusing on high-security sectors.

more#igel

AI-driven operating model key to cloud-native, autonomous networks | Computer Weekly

Agentic AI can transform telecom networks if operators establish cloud-native maturity and integrate autonomy while maintaining reliability.

HPE sees the network as a security sensor: what does that mean?

HPE Networking views the network as a critical security sensor and enforcement point, especially after acquiring Juniper Networks.

Replacing Database Sequences at Scale Without Breaking 100+ Services

Validating requirements can simplify complex problems, and embedding sequence generation reduces network calls, enhancing performance and reliability.

The AIRE Gap: Why Organizations Are Buying AI SRE Tools They Aren't Ready to Use - DevOps.com

AI reliability engineering promises to enhance incident management, but many organizations are unprepared for its implementation and benefits.

1 month ago

Weighing up the enterprise risks of neocloud providers | Computer Weekly

Neocloud providers, which include the likes of Nscale, CoreWeave and Carbon3.ai, are having a somewhat disruptive impact on the market by making huge commitments to build out hyperscale datacentres in support of the UK government's AI growth agenda. These providers are also taking up capacity in colocation datacentres that some of the hyperscale cloud giants previously committed to renting space in, before pulling out.

Miscellaneous

#generative-ai

Building an AI competitive edge through strategy and governance | MarTech

Generative AI requires strategic layers for effective output; polish does not equate to quality or alignment with creative goals.

fromReadWrite

The CISO Struggle: How AI is Changing the Data Security Landscape

Generative AI adoption is rapid, but security governance is lagging, creating significant risks for organizations.

Building an AI competitive edge through strategy and governance | MarTech

Generative AI requires strategic layers for effective output; polish does not equate to quality or alignment with creative goals.

fromReadWrite

The CISO Struggle: How AI is Changing the Data Security Landscape

Generative AI adoption is rapid, but security governance is lagging, creating significant risks for organizations.

Claude Code leak puts enterprise trust at risk as security, governance concerns mount

Leaks threaten Anthropic's market position and raise security concerns about its AI coding tools.

fromTechRepublic

The Next Billion Users Won't Be Human: Securing the Agentic Enterprise

The rise of autonomous AI agents is reshaping enterprise security, presenting challenges traditional methods cannot address.

Claude Code leak puts enterprise trust at risk as security, governance concerns mount

Leaks threaten Anthropic's market position and raise security concerns about its AI coding tools.

fromTechRepublic

The Next Billion Users Won't Be Human: Securing the Agentic Enterprise

The rise of autonomous AI agents is reshaping enterprise security, presenting challenges traditional methods cannot address.

OpenStack Gazpacho simplifies operations and VMware migrations

OpenStack 2026.1 emphasizes operational simplicity, live migration for VMware workloads, and hardware flexibility, positioning itself as a sovereign alternative to major cloud providers.

Only 14 percent of companies achieved a high level of cloud maturity

Only 14% of organizations have achieved the highest level of cloud maturity despite AI driving demand for cloud investments.

Open Source Security Tool Trivy Hit by Supply Chain Attack, Prompting Urgent Industry Response

A malicious release of the Trivy vulnerability scanner exposed critical weaknesses in software supply chain security, allowing for potential credential theft.

Observability warehouses, the next structural evolution for telemetry

Observability is essential for real-time insights in cloud systems, helping to reduce downtime and improve performance.

fromJohnjwang

Artificial intelligence

Why are executives enamored with AI but ICs aren't?

Executives embrace AI for its non-deterministic nature, while individual contributors remain skeptical due to their focus on deterministic tasks.

IGEL brings 'Smarter, Zero Trust' approach Contextual Access to endpoints

IGEL's Contextual Access enhances endpoint security by adapting access rights based on user, device, location, and trust status.

Blind trust in hardware vendors is always a bad idea

Attackers are increasingly targeting hardware and firmware vulnerabilities as traditional security tools focus primarily on software layers.

How to build an enterprise-grade MCP registry

MCP registries are essential for integrating AI agents with enterprise systems, requiring semantic discovery, governance, and developer-friendly controls.

Using Azure Copilot for migration and modernization

Azure Copilot simplifies application migration to Azure while leveraging GitHub Copilot for updates.

Azure's new AI modernization tools

Microsoft's Azure Copilot aids in application migration and modernization, addressing technical debt and improving cloud infrastructure management.

Using Azure Copilot for migration and modernization

Azure Copilot simplifies application migration to Azure while leveraging GitHub Copilot for updates.

Azure's new AI modernization tools

Microsoft's Azure Copilot aids in application migration and modernization, addressing technical debt and improving cloud infrastructure management.

The Next Cybersecurity Crisis Isn't Breaches-It's Data You Can't Trust

Data integrity now encompasses data trust, emphasizing the importance of reliable data in AI-driven decision-making.

fromEntrepreneur

3 weeks ago

The Game-Changing Tech Saving Companies From Data Disasters

Combining Continuous Data Protection with AI capabilities enables businesses to achieve near-zero Recovery Point Objectives and minimal Recovery Time Objectives, preventing data loss and minimizing downtime.

Harness adds four capabilities to close AI delivery gap

Harness is launching four new capabilities to enhance its Continuous Delivery platform, addressing the gap between code writing speed and release reliability.

Banning routers won't fix what's already broken | Computer Weekly

The FCC's ban on foreign-made routers addresses future procurement, not current security risks, as routers are already vulnerable and widely deployed.

Event-Driven Patterns for Cloud-Native Banking: Lessons from What Works and What Hurts

Event-driven architecture introduces complexity and requires careful implementation, especially in regulated environments, to ensure reliability and system evolution.

Platformisation or platform theatre? Navigating cyber consolidation | Computer Weekly

Consolidation in enterprise security is necessary but can introduce risks like single points of failure and integration issues.

Security as Code is Becoming the New Baseline: Continuous Compliance in DevOps - DevOps.com

Compliance must be integrated into the delivery pipeline as a continuous practice rather than a periodic checkpoint.

7 steps to move from IT support to IT strategist

Too often, IT professionals feel like "order takers" for business groups - told what systems to implement or troubleshoot instead of being asked how technology can solve bigger business problems. Making the leap from support tech to strategic advisor takes time. The people who do it well don't just focus on fixing issues, they learn the business, talk in plain language, focus on results instead of tasks, and look ahead to prevent problems rather than just reacting to them.

Business

4 steps to create a future-proof data infrastructure

A future-proof IT infrastructure is often positioned as a universal solution that can withstand any change. However, such a solution does not exist. Nevertheless, future-proofing is an important concept for IT leaders navigating continuous technological developments and security risks, all while ensuring that daily business operations continue. The challenge is finding a balance between reactive problem solving and proactive planning, because overlooking a change can cost your organization. So, how do you successfully prepare for the future without that one-size-fits-all solution?

Tech industry

2 weeks ago

Mastering Azure Governance: Why It Matters and How to Get Started

Azure Governance is the set of policies, processes, and technical controls that ensure your Azure environment is secure, compliant, and well-managed. It provides a structured approach to organizing subscriptions, resources, and management groups, while defining standards for naming, tagging, security, and operational practices.

DevOps

2 weeks ago

Beyond integration theatre: Building stronger cyber platforms | Computer Weekly

Integration layers between security platforms, not the platforms themselves, have become the primary enterprise security risk requiring rigorous governance of delegated trust.

1 month ago

Rapid AI adoption increases risk of shadow IT

Widespread adoption of AI programming assistants outpaces governance, creating shadow AI and security risks as many companies lack specific generative AI controls.

How one IT chief shifted the needle on a reactive IT strategy | Computer Weekly

Norsk Global overhauled outdated IT infrastructure to improve resiliency, reduce costs, and enable operational continuity, customer API availability, and future innovation.