GRC stories

CIQ rolls out Enterprise Linux compliance stack as federal cryptography, defence contractor and post-quantum rules tighten from 2026.

Cork Cyber boosts Cork Vantage for MSPs with automated mapping, cutting manual work and improving asset accuracy across client, device and inbox records.

Spektr lands USD $20 million Series A from NEA as Copenhagen AI compliance platform targets manual checks at banks and fintechs.

Sentra and Wiz link cloud risk findings to sensitive data, helping security teams prioritise the alerts most likely to expose PII, PHI or IP.

IBM rolls out assessment and multi-agent security services to help large organisations spot AI-driven weaknesses and speed up remediation across complex systems.

Qlik adds trust scores, service levels and anomaly detection to data products as chief executive officer Mike Capone warns weak data can drive AI risk.

Keeper Security adds approval workflows and audit logging to Endpoint Privilege Manager as enterprises tighten control over temporary admin access.

Tenable adds OT asset discovery to exposure management platform, helping IT teams spot hidden connected devices and cyber-physical risks.

QuSecure says post-quantum migration should be treated as an urgent operational task, as Google, Cloudflare and India push 2029 deadlines.

Portnox hires Jonathan Skinner as Chief Marketing Officer to drive global growth, with the cybersecurity veteran tasked with sharpening go-to-market strategy.

AI-driven bots and machine accounts are exposing long-running identity security gaps across Australian and New Zealand organisations, experts warn.

Doppel secures three ISO certifications for AI governance, security and privacy, as enterprise buyers demand stronger assurance against AI-driven cyber threats.

AI-era data security needs more than DSPM visibility, as firms must track how sensitive information moves and enforce controls in real time.

Custodia says financial firms must widen record-keeping to cover collaboration tools, messaging apps and AI-generated content as regulators step up scrutiny.

Secureframe adds user access reviews to Comply platform to help compliance teams replace spreadsheets and email with a single audit-ready workflow.

Abacus secures CREST accreditation for penetration testing, bolstering its pitch to regulated sectors as demand rises for verified cyber security assurance.

Identity failures are now the main way cyber attackers breach firms, with experts warning that non-human credentials are widening the risk.

Managed AI tools help curb risk, but regulated financial data still drives most GenAI policy breaches in the sector, Netskope finds.

Anthropic’s Claude Code is under scrutiny after researchers found deny rules can weaken in long workflows, raising fresh concerns for AI-driven development.

Australia's Big Four loan scandal highlights how process intelligence can expose ghost paths, bypassed checks and hidden fraud networks.