How to Protect Your Organization From AirSnitch Wi-Fi Vulnerabilities

By / Blog / , ,

The AirSnitch family of vulnerabilities exposes critical flaws in Wi-Fi client isolation features, allowing attackers connected to a guest network to access or inject traffic into other devices on the same access point, even across different SSIDs protected by WPA2 or WPA3. This attack exploits how access points handle group keys and packet routing, undermining the security of guest networks by enabling traffic injection and potential man-in-the-middle attacks without breaking encryption.

https://www.kaspersky.com/blog/airsnitch-wi-fi-client-isolation-guest-network-vulnerability-and-mitigation/55597/

EU AI Act Compliance: a Technical Audit Guide for the 2026 Deadline

By / Blog / , , ,

With the August 2026 deadline for the EU AI Act approaching, IT leaders must shift from policy to practical compliance by mapping AI tools across APIs, legacy systems, and model integrations to ensure auditable governance. Organisations need to build comprehensive API inventories, implement continuous monitoring systems, categorise AI endpoints by risk, and rigorously audit high-risk legacy systems for transparency, human oversight, and bias mitigation to meet the stringent regulatory requirements and avoid significant fines and reputational damage.

https://www.raconteur.net/global-business/eu-ai-act-compliance-a-technical-audit-guide-for-the-2026-deadline

The Demise of Software Engineering Jobs Has Been Greatly Exaggerated

By / Blog / , , ,

Despite fears that AI will reduce software engineering jobs, the demand for developers is actually growing as AI tools enable more software to be produced, shifting engineers' roles toward overseeing AI-driven coding and focusing on software design. Companies are increasing hiring, especially for junior engineers skilled in AI, and experts emphasize that the field's evolution requires adaptability, but does not signal a decline in job opportunities.

https://edition.cnn.com/2026/04/08/tech/ai-software-developer-jobs

Managing the Risk of Vulnerability Backlogs

By / Blog /

Many organisations face significant security risks due to vulnerability backlogs, where known system weaknesses remain unresolved and exploitable over extended periods. Despite increased visibility into vulnerabilities, challenges like high volumes, fragmented workflows, and slow remediation lead to mounting security debt, making rapid detection-to-remediation processes and real-time exposure management crucial for maintaining organisational resilience against fast-evolving cyber threats.

https://www.business-reporter.co.uk/risk-management/managing-the-risk-of-vulnerability-backlogs

The Path to CIO

By / Blog / , ,

Irving Wladawsky-Berger reflects on his career journey to becoming a CIO, emphasizing that while technical expertise is essential, it is business acumen, management capability, trust-building, and effective communication that ultimately lead to success in top technology leadership roles. He highlights that the CIO role has evolved from a focus on IT infrastructure to a strategic position deeply connected to business outcomes, requiring leaders to shift from hands-on technical work to guiding teams and aligning technology with organizational goals.

https://www.cio.com/article/4155823/the-path-to-cio.html

12 AWS Cloud Security Best Practices for 2026: Cloud Security Guide

By / Blog / ,

The article outlines 12 best practices for securing AWS cloud environments in 2026, emphasizing continuous, risk-based governance tailored to dynamic cloud workloads. Key recommendations include enforcing least-privilege identity access, continuous asset discovery, default encryption, API security, network segmentation, automated vulnerability management, container security, and securing AI workloads, all within the context of the AWS shared responsibility model where customers manage identity and configuration security. These practices, supported by unified platforms like Qualys TotalCloud™, aim to reduce exposures, accelerate threat detection and remediation, and maintain continuous compliance in complex cloud environments.

https://blog.qualys.com/product-tech/2026/04/09/1aws-cloud-security-best-practices-guide

Tackling Data Breach Risks Requires Perpetual Planning

By / Blog /

The article emphasizes that organizations must engage in continuous, proactive data security planning to mitigate the long-term financial, reputational, and legal risks posed by data breaches, which go beyond immediate operational disruptions. It highlights evolving cyber threats like data theft over ransomware, the necessity of frequent cybersecurity discussions at the executive level, and the importance of clear contractual responsibilities and insurance to protect against potential damages.

https://www.cfobrew.com/stories/2026/04/07/tackling-data-breach-risks-requires-perpetual-planning

The Missing Piece in Every Failed AI/BI Rollout Is Already on Your Data Team

By / Blog / ,

The article argues that the key to successful AI and business intelligence rollouts lies not in the AI models themselves but in the human data analysts who provide vital business context that AI lacks. It introduces the concept of an “AI context engineer”—a data professional who curates and governs the semantic and organizational knowledge that enables AI to deliver accurate and trusted insights, making analysts more strategic and indispensable in the AI-driven future of enterprise analytics.

https://www.cio.com/article/4155101/the-missing-piece-in-every-failed-ai-bi-rollout-is-already-on-your-data-team.html

The Sovereign SOC: Engineering Trust in Autonomous AI

By / Blog / , ,

The article discusses how UK and EU CISOs manage the integration of autonomous AI in Security Operations Centers (SOCs) while ensuring compliance with GDPR, NIS2, and other data protection laws. It emphasizes the importance of autonomy, transparency, explainability, accuracy, and data sovereignty in AI-driven SOCs to build trust, meet regulatory requirements, and enable efficient, auditable investigations without compromising privacy or control.

https://managedservicesjournal.com/articles/the-sovereign-soc-engineering-trust-in-autonomous-ai/

How CIOs Run and Rebuild the Business in the AI Era

By / Blog / , ,

In the AI era, CIOs must simultaneously run and transform their businesses by partnering closely with HR and enterprise architects to adapt work processes and workforce skills. They need to identify which tasks will be automated or augmented by AI, redesign job roles accordingly, and ensure that systems support AI-augmented work while fostering key skills such as AI fluency, human judgment, and adaptability to remain competitive. This collaborative approach is vital for organizations to successfully navigate AI-driven disruptions and build future-ready enterprises.

https://www.informationweek.com/ai-innovations/how-cios-run-and-rebuild-the-business-at-the-same-time-in-the-ai-era

Scroll to Top