75% of Organisations Have Gaps in Core Security Controls, Research Finds

By / Blog / ,

75% of organizations lack core security controls, with insufficient MFA, endpoint detection, and policy management. This results in overlapping exposures and significant risk, as seen in recent research by Nagomi Security. Misconfigurations are rapidly increasing exposure, and vulnerabilities are not the only concern. While vulnerability management is strong, identity and endpoint controls lag, leaving many assets unprotected. Progress should focus on eliminating high-impact exposure conditions rather than siloed metrics.

https://www.itsecurityguru.org/2026/01/29/75-of-organisations-have-gaps-in-core-security-controls-research-finds/

Human Risk Management: CISOs’ Solution to the Security Awareness Training Paradox

By / Blog / , , ,

Security awareness training (SAT) is ineffective despite significant investment, as it focuses on knowledge rather than behavior. Human risk management (HRM), which focuses on changing employee behavior, is a more effective approach. HRM uses AI to personalize training, identify risky users, and provide targeted interventions, ultimately improving cybersecurity behavior and reducing incidents.

https://www.csoonline.com/article/4123230/human-risk-management-cisos-solution-to-the-security-awareness-training-paradox.html

Deploying Microsoft 365 Copilot in Five Chapters

By / Blog / ,

Microsoft's guide on deploying Microsoft 365 Copilot shares insights from rolling it out to 300,000 employees. The guide covers governance, implementation strategies, driving adoption, and building support foundations. It emphasizes the importance of proper data handling and employee engagement in AI adoption, using structured licensing phases for efficient rollout. Key lessons include maintaining compliance with data regulations, optimizing license management, and the significance of clear communication during the implementation process. Overall, the guide serves as a blueprint for organizations aiming to harness AI for productivity.

https://www.microsoft.com/insidetrack/blog/deploying-microsoft-365-copilot-in-five-chapters/

AI Is Changing How Work Gets Done. Here’s How CIOs Can Help

By / Blog / , ,

AI adoption is transforming job roles and responsibilities across organizations. CIOs can facilitate this change by guiding talent upskilling and re-evaluating operational processes to maximize AI's impact. New roles are emerging, such as prompt engineers and AI specialists, while existing roles evolve to incorporate AI tools. Companies are focusing on training their workforce to adapt, leveraging AI's capabilities to streamline operations. CIOs should prioritize building cross-functional teams and training resources to navigate these shifts effectively.

https://www.ciodive.com/news/AI-effect-on-jobs-CIO/810912/

The AI Code Generation Governance Gap Is a Security Gap — Here’s How to Close It

By / Blog / , , ,

AI code generation governance is lagging, creating security and compliance risks. Only 23% of IT leaders manage AI governance effectively, risking a 30% rise in legal disputes by 2028. The increase in AI-generated code without proper oversight may introduce security vulnerabilities. To address this, governance must become continuous and integrated into the development workflow, allowing for instant checks on security and compliance. Embedding automated governance practices reduces risks, simplifies compliance, and enables productive use of AI tools, turning governance from a hindrance into a facilitator of innovation.

https://solutionsreview.com/the-ai-code-generation-governance-gap-is-a-security-gap-heres-how-to-close-it/

NEW Research: AIs Are Highly Inconsistent When Recommending Brands or Products; Marketers Should Take Care When Tracking AI Visibility

By / Blog / , ,

AIs are inconsistent in brand/product recommendations, raising concerns for marketers relying on AI tracking. Research by Rand Fishkin and a colleague shows AIs rarely provide the same list of recommendations, complicating visibility metrics. Despite running numerous prompts via popular AI tools (ChatGPT, Claude, Google AI), the findings indicate answers vary widely, making “ranking position” tracking unreliable. Nevertheless, visibility percentages across multiple prompts can reflect brand presence in AI responses. Marketers should critically evaluate AI tracking tools, avoiding those without transparent methodologies.

https://sparktoro.com/blog/new-research-ais-are-highly-inconsistent-when-recommending-brands-or-products-marketers-should-take-care-when-tracking-ai-visibility/

How “95%” Escaped Into the World

By / Blog / ,

“95 percent” of organizations claim no measurable P&L impact from generative AI, a statistic gaining traction but lacking robust academic backing. This claim originates from an MIT report with significant methodological issues: it provides no confidence intervals, and its sample is potentially unrepresentative, mixing various types of data without consistent definitions. The broad applicability of “95 percent” is questionable, as evidence suggests success rates may be closer to 25%. Moreover, the research lacks the scholarly rigor of peer-reviewed work, leading to potential misinterpretations. Overall, this figure should be regarded as unreliable and oversimplified.

https://www.exponentialview.co/p/how-95-escaped-into-the-world

Microsoft Brings AI-powered Investigations to Security Teams

By / Blog / , , , ,

Microsoft Purview Data Security Investigations launched, enabling efficient security investigations (e.g., data breaches, internal fraud). Integrates across Microsoft 365, uses GenAI for data analysis, offers natural language search, and includes mitigation actions. Usage-based pricing for storage and analysis.

https://www.helpnetsecurity.com/2026/01/27/microsoft-purview-data-security-investigations/

Scroll to Top