US still prioritizing zero-trust migration to limit hacks’ damage

The zero-trust initiative, which gained steam during the Biden administration, is still underway.

By Eric Geller • Aug. 6, 2025

CISA’s relationship with industry needs work to reestablish trust, experts say

Critics say budget cuts, job losses have hurt the agency’s ability to coordinate with private industry.

By David Jones • Aug. 6, 2025

Explore the Trendline➔

CISO Strategy

Corporate stakeholders want to better understand the risk calculus of their technology stacks, answering the lingering question: Are we a target? 

By Cybersecurity Dive staff

Cybersecurity budgets tighten as economic anxiety rises

Uncertain tariff policies and fluctuating inflation and interest rates are leading to stagnant or reduced budgets, according to an IANS Research report.

By Alexei Alexis • Aug. 5, 2025

Senate confirms Trump’s national cyber director nominee

Sean Cairncross, a political veteran without significant cybersecurity experience, could turn the relatively new White House office into a major player in the administration.

By Eric Geller • Aug. 3, 2025

Palo Alto Networks to buy CyberArk for $25 billion

The agreement could completely reshape the market for identity security, according to analysts.

By David Jones • July 30, 2025

CISA’s Joint Cyber Defense Collaborative takes major personnel hit

JCDC’s troubles add to the woes of the already-depleted CISA, which could lose even more personnel as additional contracts with private companies expire.

By Eric Geller • July 30, 2025

‘Shadow AI’ increases cost of data breaches, report finds

Companies are failing to protect their AI tools from compromise, often leading to more extensive data breaches, according to new data from IBM.

By Eric Geller • July 30, 2025

Senators push CISA director nominee on election security, agency focus

Sean Plankey said he would double down on CISA’s core mission and “allow the operators to operate.”

By Eric Geller • July 24, 2025

Trump AI plan calls for cybersecurity assessments, threat info-sharing

It remains unclear how federal agencies depleted by layoffs will be able to implement the strategy’s ambitious vision, which includes an ISAC dedicated to AI.

By Eric Geller • July 23, 2025

Lapsed CISA contract impedes national lab’s threat-hunting operations

The CyberSentry program remains operational, according to CISA, with analysts outside the lab continuing to review sensor data.

By Eric Geller • July 23, 2025

Dwindling federal cyber support for critical infrastructure raises alarms

A plan to transfer cybersecurity and resilience responsibilities to states could have major unintended consequences.

By Eric Geller • July 22, 2025

How IT leaders infuse cyber hygiene into daily work

For technology chiefs, a “do as I say, not as I do” stance could lead to a security breach. Instead, cyber awareness can be taught by example.

By Jen A. Miller • July 21, 2025

Amazon’s director of security on locking down enterprise AI

"We've seen hype cycles before, but this one is a little different," Mark Ryland, director of security at Amazon, told CIO Dive.

By Roberto Torres • July 18, 2025

State Department cyber diplomacy firings and changes threaten US defenses

Departures and restructuring will make it harder for the agency to pursue global policies that strengthen U.S. critical infrastructure, experts said.

By Eric Geller • July 17, 2025

Risk management, legacy tech pose major threats to healthcare firms, report finds

Companies have improved their recovery processes and user controls but still lag in risk preparedness, according to the report.

By Eric Geller • July 15, 2025

Security coalition urges Congress to renew 2015 CISA law

A group of top cybersecurity and technology firms said the law provided critical protections for sharing essential vulnerability information.

By Eric Geller • July 8, 2025

FBI cyber guidance to lawmakers falls short, US senator says

Sen. Ron Wyden wants FBI briefings to cover four often-overlooked cybersecurity practices.

By Eric Geller • July 2, 2025

Beyond the hype: How security leaders can build AI agents that matter

AI agents can reclaim hours of lost analyst time if deployed with purpose, strategy and secure design.

By Eoin Hinchy, CEO & Co-Founder, Tines • June 30, 2025

AI security issues dominate corporate worries, spending

Two reports illustrate how business leaders are thinking about and budgeting for generative AI.

By Eric Geller • June 26, 2025

‘Suspended animation’: US government upheaval has frayed partnerships with critical infrastructure

Recent federal cuts, reorganizations and other disruptions have alarmed industry leaders, who say the government is a less reliable partner even as cyber threats increase.

By Eric Geller • June 25, 2025

AWS CISO stumps for security as an AI enabler

AI’s rapid development underscores the need for secure foundations, Amy Herzog said Tuesday during the company’s annual cybersecurity conference.

By Roberto Torres • June 20, 2025

Cyberattacks top list of global business concerns, Kroll finds

Many companies feel unprepared to comply with global privacy and security rules, according to the advisory firm’s annual business sentiment survey.

By Eric Geller • June 13, 2025

Trump scraps Biden software security, AI, post-quantum encryption efforts in new executive order

The White House accused the Biden administration of trying to “sneak problematic and distracting issues into cybersecurity policy.” 

By Eric Geller • June 6, 2025

Corporate executives face mounting digital threats as AI drives impersonation

Malicious actors are using deepfakes and voice-cloning technology to target senior executives in both the workplace and personal spaces.

By David Jones • June 6, 2025

Trump’s national cyber director nominee dodges criticism of funding cuts

Sean Cairncross said his managerial experience has prepared him well to lead a relatively new White House cyber unit.

By Eric Geller • June 5, 2025