Insight

More than 100 vendors now position themselves as AI SOC platforms, but the category didn’t even exist 18 months ago.   The Cloud Security Alliance found that AI-enhanced SOCs investigated cloud security incidents 45–61% faster than manual teams, explaining the boom in interest.   The vendors truly defining the AI SOC space are the ones with fully agentic underpinnings. This piece profiles those vendors, offers a shared framework for comparing platforms, and explains what makes...

The last time I spoke with Securonix, it was to discuss its acquisition of ThreatQuotient, adding a threat intelligence capability to its existing portfolio of security analytics, threat detection and incident response through its cloud-native Unified Defense SIEM. Several months on from that announcement, new steps have been taken to enable a wider user base, alongside the launch of new capabilities designed to support AI measurement and management. The combination of unified SIEM and managed...

Like many, I love KnowBe4’s The Inside Man series. So when series director Jim Shields and writer Robert McCollum stood on stage at the UK Premiere for Season 7 (held at the glitzy Odeon LUXE in Leicester Square, in an affair that could rival any of the Summer’s blockbusters) and said that they’d always planned to wrap the show up after seven series, I found myself abhorred. Personally, I’m not quite ready to let go...

Security is not a point-in-time exercise. It’s a cycle of testing, fixing, and starting over. Organisations that treat it as anything less quickly fall behind. In the last decade, we've seen how offensive security practices such as penetration testing, combined with follow-up patching and mitigation strategies, have significantly strengthened defences. For instance, Active Directory hardening, EDR solutions, and endpoint security have evolved considerably thanks to insights from attack simulations. Repeated internal testing followed by corrective...

The 2026 Verizon Data Breach Investigations Report (DBIR) has sparked widespread industry reaction, with security leaders warning that AI-enabled attacks, vulnerability exploitation, and third-party risk are reshaping the threat landscape faster than many organisations can respond. For the first time in the report’s history, vulnerability exploitation overtook stolen credentials as the leading initial access vector, a shift many experts say reflects both AI acceleration and growing operational strain on defenders. Collin Hogue-Spears, senior director of...

The European Union’s AI strategy is entering a new phase. What began as a commitment to “trustworthy AI,” grounded in ethics and human rights, is now evolving into a legally enforceable framework for technically secure AI. EU-specific AI, data and cybersecurity regulations are taking effect, alongside the January 2026 Digital Omnibus initiative. Cybersecurity is no longer a supporting consideration in AI governance, but rather, it is now a statutory obligation. AI systems are embedded across...

AI is transforming both attacks and defense. To avoid being outstripped by AI-powered adversaries, organizations need platforms that prioritize risk in real-time. Exposure management with AI is the next evolution in comprehensive cybersecurity. AI-powered exposure management, as embodied in continuous threat exposure management (CTEM) platforms, help security leaders keep an eye on the entire ecosystem, discovering not just vulnerabilities across assets, but all weaknesses across all areas of the attack surface. The criteria for evaluating...

New research from CyberSmart has revealed that, despite a compliance deadline that has now passed, only 16% of businesses required to comply with the EU’s Network and Information Security Directive 2 (NIS2) are confident that they are fully compliant. Worryingly, 11% of respondents were unsure what NIS2 is, despite falling within its scope. The CyberSmart NIS2 Survey, reveals insights from 670 business leaders across the UK, Poland, the Netherlands, Ireland, France, Germany, Denmark and Belgium....

After a successful Year 9 Demo Day, Cyber Security Academic Startup Accelerator Programme (CyberASAP) is gaining momentum towards its 10th anniversary kick off, which is due to start later this month. This comes as the Department for Science, Innovation and Technology (DSIT) has committed a further £10m over the next four years in additional funding to CyberASAP. Delivered by Innovate UK, the programme has bridged the gap between academia and industry, accelerating the commercialisation of cutting-edge cyber...

The world is adapting to the concept of agentic AI: agents that can operate in your network with human instruction and direction, and cut the time needed to do menial tasks. Within the SOC, a number of new tools and platforms are now vying for attention with a range of offerings for different sized users. We looked at five common criteria of the current offerings to determine the primary AI SOC analyst platform providers: Autonomy...