Nightfall AI - Resources
Top stories
.png)
The Nightfall Approach: 5 Ways Our Shadow AI Coverage Differs from Generic DLP
Everyone’s talking about Shadow AI risk. But not all coverage is created equal
.png)
Data Flow: Why Most Organizations Don’t Understand Their Information Movement
If you don’t know where your data goes, you can’t protect it.
How LLMs Are Changing DLP, And Why That’s a Good Thing
AI is transforming data loss prevention. Here’s why that matters for your security team.
.png)
Build vs. Buy: How AI is Shaping Your Next DLP Decision
As AI reshapes the security landscape, every security leader faces a critical question: Should you build your own DLP tools, or buy solutions already powered by AI?
Nightfall Product Updates & News: May/June 2025
Product news and updates from Nightfall: improved dashboard, new detectors, and a lot more.
From Code to Conversations: How Modern AI Creates New Classes of Data Risk
Chasing AI productivity gains can come with a hidden cost: invisible data exposure
.png)
Now Available: AI-Powered Data Loss Prevention for Microsoft Exchange Online
The Reality Behind Exchange Online DLP: What Customers Actually Experience
.png)
The Missing Layer: Email Protection That Exchange Online and Gmail Users Urgently Need
Go beyond legacy DLP tools to get comprehensive email protection
.png)
Beyond Attachments: How Email Becomes Your Biggest Data Exfiltration Vector
Email has become one of the most notorious data exfiltration vectors
.png)
Enabling Safe AI Adoption: Insights from Nightfall AI and Vanta
A discussion with Rohan Sathe, Co-founder of Nightfall AI, and Unni Patel, Senior Product Manager at Vanta
Nightfall’s Spring 2025 Product Launch Brings DLP to the AI Era
Nightfall's Approach: Enabling secure AI adoption
Why Partial DLP Coverage Leaves Your Data Exposed – And How to Fix It
“We have a DLP tool, but we still had no idea this much data was exposed.”
.png)
.png)
G2 Recognizes Nightfall as Data Loss Prevention (DLP) Leader for Spring 2025
G2 Recognizes Nightfall as Data Loss Prevention (DLP) Leader for Spring 2025
Secure API Keys and Passwords with Nightfall’s AI-Native DLP
Secure APIs and Passwords with Nightfall’s AI-Native DLP
.png)
Insider Risk with Nightfall DLP: Episode 2 - Managing Shadow AI
Nightfall DLP makes it easy to enforce policies to combat shadow AI and keep critical data safe
The Essential DLP Checklist for Digital Health and Life Sciences
Protect PHI and PII with Nightfall's Essential DLP Checklist for Health Tech and Life Sciences
Why the Future of DLP Is Invisible, Invincible, and Inexpensive
See how the 3 I’s of DLP are built into everything Nightfall does when protecting sensitive data across endpoints and SaaS
Insider Risk with Nightfall DLP: Episode 1 - Prevent Personal Cloud Store Uploads
Insider risk illustrated, with Nightfall DLP
How to Prevent Sensitive Data Exposure to AI Chatbots Like DeepSeek
Three simple DLP strategies can prevent sensitive data from getting exposed to AI chatbots like DeepSeek
Nightfall Releases the 2025 State of Secrets Exposure Report
This year's report offers a look at what changed, what stayed the same, and where you can find a little hope in the quest for effective secrets management.
What is Data Lineage and Why Does it Matter in Data Loss Prevention?
Discover what data lineage is and why combining data lineage with AI-driven classification is critical for modern DLP strategies. Learn how tracking data's origin and movement while accurately identifying sensitive content prevents leaks in SaaS, AI, and cloud environments.
Here’s What We Can Learn from the Cyberhaven Incident
In December 2024, Cyberhaven fell victim to a sophisticated cyberattack that exploited a phishing campaign targeting its Chrome Web Store account. This breach compromised over 400,000 users by injecting malicious code into its browser extension, exfiltrating sensitive data such as cookies and session tokens. The incident ...
Safetica DLP: Comprehensive Analysis & Top Alternatives in 2025
In-depth Safetica DLP guide: explore features, real-world limitations, and how it compares to modern solutions like Nightfall AI for GenAI and cloud data security.
CrowdStrike DLP: Comprehensive Review & Top Alternatives in 2025
In-depth 2025 CrowdStrike DLP guide: explore features, real-world limitations, and how it compares to modern solutions like Nightfall AI for GenAI and cloud data security.
Code42 Incydr: The Essential Analysis with 50+ FAQs and Top Alternatives
Code42 Incydr is among the legacy solutions aiming to mitigate insider threats, yet it doesn’t always meet every organization’s needs. In the following article, we examine Code42’s capabilities and limitations through a 60-question FAQ that addresses everything you'd want to know when evaluating DLP and IRM solutions.
Forcepoint DLP: Comprehensive Review and Top Alternatives in 2025
Discover Forcepoint DLP’s features, limitations, and top alternatives. Learn how AI-driven solutions like Nightfall can protect data more effectively.
Symantec DLP: Comprehensive Review and Top Alternatives in 2025
Discover Symantec DLP’s features, limitations, and top alternatives. Learn how AI-driven solutions like Nightfall can protect data more effectively.
The 12 Best Data Loss Prevention Software Solutions of 2025 and 50+ FAQs Answered
Learn more about the top 12 best data loss prevention software solutions that can help you protect sensitive data and address 50+ FAQs to guide your evaluation of the top DLP solutions.
The 7 Most Telling Data Breaches of 2024
Get the skinny on which 2024 breaches signal the biggest data security threats, trends, and shifts.
People Problem or Data Problem? Risks and Mitigation of Insider Threats
What are insider threats, and how can you defend against them?
Understanding the Limitations of Atlassian Guard DLP: What You Need to Know
Atlassian collaboration apps enable tremendous productivity, but the way most teams use them poses great risks to your data. Should you use native Atlassian DLP, or look to external cloud DLP to mitigate those risks? Take a deep dive into functionality, advantages, disadvantages, and more to find the right solution for your needs.
Loose AWS API keys: what's your real risk?
While malicious actors can gain access to systems in any number of ways, using your API key is the equivalent of walking through a wide-open door and walking in unchecked. Whoever holds that key will have direct access to what are likely your most valuable digital assets.
Intelligent Data Classification: Transforming Google Drive Security
Customers need an automated, dynamic, and human-centric cloud DLP solution to label and classify data in Google Drive.
How To Prevent Secrets Sprawl
Where are your credentials and secrets, and how are you protecting them?
DLP 101: How to Prevent Data Exfiltration in the Cloud
What is data exfiltration, and how can cloud Data Loss Prevention (DLP) help defend against it?
10 Essential Guidelines For Enterprise-Ready AI Solutions
AI-powered solutions are becoming increasingly prevalent in enterprise environments, leading to a new trend in procurement: the need for comprehensive AI governance frameworks.
Nightfall Named A Leader in Data Loss Prevention by G2
Nightfall leads the way in Data Loss Prevention Software, Data Security Software, and Sensitive Data Discovery Software.
Nightfall AI Honored as Winner of the 2024 SC Awards
Nightfall has been recognized in the Best Data Security Solution and Best Insider Threat Solution categories.
5 Steps to Send An Encrypted Email in Gmail
Discover how to send encrypted emails in Gmail using Nightfall’s AI-powered encryption tools.
Prompt Sanitization: 5 Steps for Protecting Data Privacy in AI Apps
Content filtering and prompt sanitization are key for maintaining security and trust in LLM apps.
Nightfall AI selected as 2024 SC Awards Finalist
Nightfall AI has been recognized as a 2024 SC Award finalist in the Trust Award categories for Best Data Security Solution and Best Insider Threat Solution.
DLP 101: What is data loss prevention, and why do you need it?
Learn how you can leverage data loss prevention products for continuous data security and compliance.
2024 State of Secrets Report
Do you know where your most sensitive secrets are shared across the cloud? Based on Nightfall’s latest report, odds are that some of them have slipped through the cracks.
How to Send Encrypted Emails in Gmail in 5 Easy Steps
Discover how to send encrypted emails in Gmail using Nightfall’s AI-powered encryption tools.
Let's chat at Black Hat!
Excited for Black Hat? So are we. Let's meet! We'd love to meet with you to learn more about your data security pain points and share a bit more about our AI-powered solution.
Key Learnings from the Disney Breach: 5 Ways to Stop Secret Sprawl
The Disney breach is a wake-up call for any organization that may have secrets sprawled across their tech stack.
8 Best Data Leak Prevention (DLP) Policies for Protecting Your Sensitive Data
These popular DLP policies are useful tools for protecting your sensitive data, preventing data exfiltration, securing your AI usage, and more.
Nightfall Named A Leader in Data Loss Prevention (DLP) by G2
Nightfall leads the way in G2’s Summer ‘24 reports.
Employee Spotlight: Amit Nene, Engineering Leader
Meet the newest addition to the engineering team at Nightfall AI.
Secure Your AI apps and data pipelines with Nightfall’s Firewall for AI
Nightfall’s Firewall for AI acts as a trust boundary that protects sensitive company and customer data during every stage of AI model building and consumption.
Is Slack using your data to train their AI models? Here’s what you need to know.
With Slack’s AI training policy in the spotlight, it’s time to consider how you can take security for AI into your own hands.
Building your own AI app? Here are 3 risks you need to know about—and how to mitigate them.
From training to annotation to fine-tuning and beyond, here’s how a firewall for AI can help you stay secure as you build your AI model.
5 things you need to know to build a firewall for AI
As organizations expand their use of AI apps, it's important to have a scalable data leak prevention (DLP) solution in place.
4 key takeaways from the 2024 Verizon Data Breach Investigations Report
What are the most common kinds of data breaches—and how can you protect your data against them?
Employee Spotlight: James Jaconetti, VP of Customer Success
Meet the newest addition to the Customer Success team at Nightfall AI.
Top 5 SaaS misconfigurations to avoid and why
It’s essential to be proactive about managing your security posture across SaaS apps like Google Drive and Microsoft OneDrive. Read on to learn why—and how—you can do just that.
Here’s what caused the Sisense data breach—and 5 tips for preventing it
Learn what you can do to stop data sprawl and prevent privilege escalation attacks.
Nightfall named a “Data Security Solution of the Year”
Nightfall has been named a “Data Security Solution of the Year” by the Data Breakthrough Awards.
Securing AI with Least Privilege
In the rapidly evolving AI landscape, the principle of least privilege is a crucial security and compliance consideration.
Firewalls for AI: The Essential Guide
As organizations increasingly build AI applications, firewalls for AI are an important component of modern data security strategies.
Nightfall Named A Leader in Data Loss Prevention (DLP) by G2
Nightfall leads the way in G2’s Spring ‘24 reports.
5 Expert Tips for Protecting Your Enterprise’s Sensitive Data
Join Nightfall’s investors for insights on how to defend enterprise data against new and evolving threats.
Nightfall was built on AI. Here’s how we’re advancing our mission to scale data protection in the enterprise.
As we continue to innovate, Nightfall's central mission is to empower enterprises big and small to navigate the digital world with confidence, while ensuring the security and privacy of their sensitive data.
Prevent security drift with Nightfall SaaS Security Posture Management (SSPM)
SaaS Security Posture Management, or SSPM, is a critical tool for governing data and managing risk within the enterprise.
Navigating Data Privacy for GenAI in Customer Support
As GenAI transforms customer support, data privacy remains paramount.
Nightfall AI releases GenAI-powered Sensitive Data Protection for the enterprise
From detection to remediation to education, Nightfall’s ultimate goal is to use GenAI to help security teams find peace of mind, knowing their company and customer data is secure across the cloud and beyond.
Nightfall AI launches data encryption and sensitive data protection for emails
In a world where data breaches are increasingly costly (and common), Nightfall has innovated a simpler and more streamlined solution to protecting sensitive data in emails and beyond.
Reduce insider risk with Nightfall Data Exfiltration Prevention
Insider risk is a challenging issue for the enterprise, and unfortunately, legacy DLP falls short. But with Nightfall’s advancements in GenAI, security teams can stop insider risks before they escalate.
Nightfall AI Transforms Enterprise DLP with AI-Native Platform
Nightfall's new enterprise capabilities expand cloud DLP use cases for AI-powered data security.
Nightfall expands its platform to meet modern enterprise DLP challenges
Legacy DLP never worked. Enter: Nightfall AI, the AI-native data leak prevention (DLP) platform.
New at Nightfall: February '24 Product Update
From platform enhancements to time-saving features, here’s how Nightfall improved the customer experience this month.
Done with traditional DLP? Here’s how generative AI can help.
Tired of being overwhelmed by alerts? Discover how generative AI can transform your DLP solution.
New at Nightfall: January '24 Product Updates
From platform enhancements to time-saving features, Nightfall has made several updates to simplify our customer experience.
4 Tips For Staying Ahead of Cybersecurity Threats in 2024
From prompt injection to to privilege escalation, these are the security threats you need to be prepared for in 2024.
Streamline your security workflows with these 3 shortcuts in Tines
Create your own custom cloud DLP workflows by integrating Nightfall with Tines.
The ultimate guide to security for AI
From regexes to transformer models, here’s how you can leverage AI and machine learning for better sensitive data detection.
Nightfall’s new GenAI detectors are revolutionizing the cloud DLP landscape. Here’s how.
Learn how Nightfall’s detection engine stacks up against AWS Comprehend, Google DLP, and Microsoft Purview.
Nightfall AI Launches Human Firewall Feature to Help SecOps Teams Tackle High-Volume Alerts with Velocity
What is a human firewall, and how can it help you strengthen your security posture?
Introducing Cloud DLP for Microsoft Teams
Learn how Nightfall ensures security and compliance for Microsoft Teams.
3 Things You Need to Know About the Okta Breach
The recent Okta breach serves as a crucial reminder to safeguard sensitive information like credentials and session tokens. Here's what you need to stay protected.
Introducing Nightfall for Notion
Nightfall for Notion stops sensitive data such as PHI, PII, secrets, and keys from leaking into Notion pages.
Nightfall AI and Snyk Partner to Offer Developers AI-Powered Secrets Scanning
Snyk will co-sell Nightfall's cloud Data Leak Prevention (DLP) platform to keep developers' secrets secure while they work in SaaS apps like GitHub, Slack, and Jira.
Nightfall Partnered with Snyk to Make Developers’ Lives Easier. Here’s How.
Developers, meet the secrets scanning dream team.
AI Development Tools that Security Teams Should Know About and How to Secure Them
AI development tools introduce a number of new security challenges. Here's how to stay secure.
Improve Your Alert Triage Process In Just 3 Steps
What exactly is alert triage, and how can you use it to strengthen your business against rising cyber threats?
New at Nightfall: September ‘23 Product Updates
We’ve made several exciting enhancements to the Nightfall platform this month, including multiple new features as well as a more streamlined user experience.
Nightfall Named A Leader in Data Loss Prevention (DLP) by G2
Nightfall leads the way in G2’s Fall ‘23 reports.
7 Ways Security Teams Can Save Time With AI
Let AI work for you to streamline monitoring, response, and more.
Do You Use ChatGPT at Work? These are the 4 Kinds of Hacks You Need to Know About.
GenAI tools help you to streamline your workflows—but they also help threat actors access your data.
GenAI is Everywhere. Now is the Time to Build a Strong Culture of Security.
Nightfall’s vision for DLP in an age of GenAI.
Worried About Leaking Data to LLMs? Here’s How Nightfall Can Help.
AI is evolving. We need new ways to keep our data secure.
Protected Health Information (PHI) detector for digital healthcare datasheet
Healthcare organizations require an effective way to scale HIPAA compliance enforcement across their cloud applications without excessive time and resource commitment. This requires a high-accuracy solution capable of parsing context to identify PHI violations as they are defined by HIPAA
Nightfall Advanced Secrets Detection Datasheet
Exposure of secrets like API keys is a common problem that can lead to privilege escalation of security incidents if accessed by malicious actors. Addressing this problem requires a solution tuned to detect secrets in any format, wherever they are.
PCI Compliance Checklist for Modern Organizations
This checklist highlights core aspects of PCI compliance and security standards, as well as how to implement them.
Cloud Security Policy Template
Protecting your data in the cloud starts with developing a cloud security policy to govern user access, meet compliance standards, secure data in use, and maintain defenses against cyber threats.
.webp)
Guide to Data Loss Prevention (DLP) for Jira
Data loss prevention (DLP) is an important part of data security and compliance in the cloud, especially for organizations using SaaS applications that store high volumes of data. Companies turn to DLP solutions to discover, classify, and protect their sensitive data in environments like Jira, and maintain compliance with regimes like GDPR, CCPA, PCI, and more.
Guide to Data Loss Prevention (DLP) for Github
Learn how to detect the leakage of secrets, credentials, and other sensitive data across your code repositories with this brief guide.
Guide to HIPAA Compliance on Slack
Data loss prevention (DLP) is an important part of data security and compliance in the cloud, especially for organizations regulated by HIPAA. Furthermore, healthcare teams using Slack must follow specific guidelines laid out in Slack’s Business Associate Agreement (BAA).
6 Steps to Protect Google Drive with Data Loss Protection
Google Drive is core to enabling collaboration and access to business-critical files, but it is difficult to audit which files within Google Drive have sensitive information and who has access to them.
The 2023 Security Playbook for Remote-First Organizations
Learn how to more securely manage your remote workforce to become a true remote-first organization.
Guide to Data Loss Prevention (DLP) in Google Drive
Data loss prevention (DLP) is an important part of data security and compliance in the cloud, especially for organizations using SaaS applications that store high volumes of data. Companies turn to DLP solutions to discover, classify, and protect their sensitive data in environments like Google Drive, and maintain compliance with regimes like GDPR, CCPA, PCI, and more.
Data Security with the Nightfall Developer Platform
As a result of growing data breaches governments across the world are beginning to implement compliance regimes which require organizations to understand the quantity and nature of that data they’re ingesting. The Nightfall developer platform is designed to help organizations accomplish this with APIs that allow developers to stream data to our machine learning detectors for classification.
Guide to Data Loss Prevention (DLP) for Confluence
Learn how to detect the leakage of secrets and other business-critical data within Atlassian Confluence
Guide To HIPAA Compliance for SaaS Applications
SaaS applications enable healthcare organizations to leverage digital transformation to improve healthcare outcomes and change lives, but ensuring your organization remains compliant while adopting cloud applications can prove challanging.
The Business Case for Cloud Data Protection
As organizations continue to rapidly adopt SaaS and cloud infrastructure, IT and security teams are becoming stretched. The expanding universe of business-critical cloud applications creates increased risk for the exposure of sensitive data like PII, PHI, as well as secrets and credentials. Cloud data protection is essential to ensuring employees follow best practices for handling sensitive data and that systems are configured in a manner that prevents unauthorized access.
Guide To Data Loss Prevention (DLP) for Salesforce
Learn how to discover and prevent the leakage of customer information and other business-critical data within Salesforce
HIPAA Security Rule Implementation Specification Matrix
In order to fulfill the HIPAA Security Rule, covered entities and business associates must evaluate the implementation specifications or requirements listed under each Security Rule Safeguard in order to determine how best satisfy each. We’ve built out a matrix to explain each individual HIPAA Security Rule requirement in plain English.
The Ultimate HIPAA Security & Compliance FAQ
HIPAA compliance is a complex topic. That’s why we’ve complied the most frequently asked questions with detailed answers to help guide you through the compliance process.
Guide to Data Loss Prevention (DLP) for Slack
Data loss prevention (DLP) is an important part of data security and compliance in the cloud. Companies turn to DLP solutions to discover, classify, and protect their sensitive data in collaborative environments like Slack, and maintain compliance with regimes like HIPAA, GDPR, CCPA, PCI, and more.
3 Ways to Prevent Data Exfiltration in your SaaS Apps
Data exfiltration poses a significant threat to organizations across all industries. With cybercriminals using increasingly sophisticated methods to illicitly obtain sensitive information, IT and security teams face the daunting task of protecting their digital assets against both internal and external threats. This webinar will provide your team some practical strategies to enhance your company's defenses against data exfiltration.
Protect Your Email From Sensitive Data Loss and Data Exfiltration
Email remains a critical channel for business communication and also remains a prime exfiltration and attack vector. Traditional Secure Email Gateways (SEGs) and rules-based DLP solutions are proving inadequate against data loss, exfiltration, sophisticated attacks and the complexities of modern cloud environments. Whether your organization relies on Gmail or Exchange or a hybrid email environment, Nightfall AI can protect your email against data loss and exfiltration with a comprehensive, flexible, and efficient approach to protecting your email across platforms.
Building Security at an Enterprise Scale
Nightfall for Notion DLP is purpose-built to pinpoint sensitive data across Notion workspaces. Whether you’re using Notion as an internal wiki, a note-taking app, or something more, Nightfall’s AI-powered detectors will identify and remediate high-priority risks to ensure that your business stays continuously secure and compliant as you scale.
Next-Gen Secrets Detection for the Age of AI
All employees have a part to play in keeping company secrets safe—however, developers have an outsized role due to their privileged access to sensitive databases, production systems, and source code. With these unique challenges in mind, Nightfall partnered with Snyk to offer AI-powered secrets scanning for developers working in every stage of the code-to-cloud lifecycle.
ChatGPT and Gen AI: How to Stay Secure and Compliant
Generative AI is exploding, allowing companies to do more with less. It is, however, also exposing companies to more data security risks than ever before. In our upcoming fireside chat, we'll join Enrique Salem, former CEO of Symantec, and Isaac Madan, CEO of Nightfall, to discuss the biggest security risks of Gen AI, as well as strategies you need to stay compliant without impacting employee innovation. By the end of the chat, you'll be armed with the tools you need to safely use ChatGPT and other Gen AI tools across your business. See you there!
How Security and Compliance Can Help Unlock Enterprise Customers
Security is of paramount importance for organizations trying to shorten their sales cycles and unlock enterprise clients. Learn how to use security as a differentiator in today’s challenging macroeconomic climate.
Enhance Data Governance & Intelligence across SaaS Systems
Enterprise legal, compliance, and governance teams struggle to detect, manage, govern, and protect information in near real time. Similarly, litigation, HR and investigation teams struggle with data intelligence on information they have collected from cloud applications like Slack and Google Workspace.
Build Continuous Security & Compliance into Your SaaS Environments
As recent trends, like supply chain attacks and cloud data leaks have made clear, continuous security and continuous data compliance must be embedded into the application, no matter where it is deployed, and who is accessing it.
Learn How Bluecore Maintains Data Security on Slack with Nightfall
SaaS applications like Slack are challenging environments for enforcing data security policies. This is especially true for innovative, high-growth companies that have embraced a cloud-first philosophy.
Learn How to Protect Codebases from Secrets Exfiltration
Listen to Nightfall’s CTO, Rohan Sathe, and product specialist, Michael Osakwe, to learn about the increased exfiltration risks posed by code repositories. Learn how threat actors are incorporating targets like GitHub into their attacks, why this has become more common, and best practices to reduce your attack surface.
Data Classification & Protection with the Nightfall Developer Platform
A myriad of organizations rely on Nightfall, the industry’s first cloud-native data loss prevention (DLP) solution, to implement DLP into essential cloud applications like Slack, GitHub, and Google Drive.
How to Discover & Protect Business-Critical Data in Atlassian
Collaborative SaaS applications like Slack create environments where data policy and security best practices are difficult to maintain or enforce without an excessive time or resource commitment.
Discover Secrets Leaks in Code Repos with Nightfall for GitHub
Git-based repositories can create environments where secrets & credentials are exposed without notice, especially in environments with lots of contributors and few guidelines regarding best practices for handling credentials or environments with external collaborators who might not be familiar with best practices
How to Identify & Protect Sensitive Data in AWS
Some of the biggest data leaks in history have occurred due to problems with Amazon Web Services (AWS S3), like permissions misconfigurations, secrets mismanagement, improper security configurations, or maintaining a poor visibility environment.
Securing Best of Breed SaaS Applications in 2021
The explosive growth of SaaS collaboration tools and other cloud-based platforms makes it paramount that organizations understand how to secure data in the cloud
CISO Insider S3E3 - The DLP journey with Brent Lassi
Bluecore CISO, Brent Lassi joins us for a discussion about his two decades of experience within security. Brent takes us through the earliest days of application security to the modern cloud security era, which is heavily defined by security hygiene.
CISO Insider S3E2 - Driving diversity in infosec with Lisa Hall
Lisa Hall joins CISO Insider to discuss diversity in the infosec industry beyond hiring to meet DEI quotas. It starts with diversity in thought and background among her staff, which leads to greater diversity in the work they do at PagerDuty and eventually throughout the industry
CISO Insider S3E1 - Radical transparency with Robert Former
Acquia’s VP of Security and CISO Robert Former joins CISO Insider to chat about the importance of securing user data in his dual role at Acquia as a steward of security operations and governance, plus many more exciting topics around data security.
CISO Insider S2E7 - CISO Insider Season 2 Recap
Our season 2 recap episode is a collection of the best quotes and highlights from our second season. We gathered insights, lessons, and other valuable soundbites from CISOs and security leaders at Even Financial, Segment, MongoDB, One Main Financial, and Datadog.
CISO Insider S2E6 - Data is trust with Emilio Escobar
Datadog CISO Emilio Escobar joins CISO Insider for a discussion on data security approaches for today’s cloud-first world. By seeing data as trust, Emilio can influence his teams to find better solutions to data security problems and learn from typical pain points.
CISO Insider S2E5 - A Community of cybersecurity with Michelle Valdez
One Main Financial CISO Michelle Valdez joins CISO Insider to discuss building a community of cybersecurity, increasing resiliency and reducing human risk to minimize the impact of security incidents, and how she built this approach to cybersecurity from her long career that began in the Air Force and now includes her work in fintech in the private sector.
CISO Insider S2E4 — A risk-based approach to data security with Chris Sandulow
In this episode, MongoDB Deputy CISO Chris Sandulow joins us for a discussion on the challenges and opportunities he faces in his everyday work as a data and security steward at one of the leading document-oriented database services.
CISO Insider S2E3 — Controlling your affect with Coleen Coolidge, Part 2
Segment CISO Coleen Coolidge returns to CISO Insider part two of our chat on controlling your affect within your org. Here’s part two with Coleen.
CISO Insider S2E2 — Assuming good risk as a CISO with Coleen Coolidge, Part 1
Segment CISO Coleen Coolidge joins CISO Insider for a two-part chat about assuming good risk as a CISO and controlling your affect within your org. Here’s part one with Coleen.
CISO Insider S2E1 — A Passion for Security with Mitch Zahler
Even Financial CISO Mitch Zahler joins CISO Insider to share a great story on the first CISO — how security got a seat at the executive table.
CISO Insider S1E6 — CISO Insider Season 1 recap
Catch up on CISO Insider with our Season 1 recap episode, featuring the best quotes and highlights from our first five episodes in season 1. We gathered insights, lessons, and other valuable soundbytes from infosec leaders at Sisense, Compass, LifeOmic and Caterpillar Financial.
CISO Insider S1E5 — “There’s no one way to be a CISO” with Ross Young
Caterpillar Financial Services Corporation Chief Information Security Officer Ross Young joins CISO Insider to share his insights from a career in both the public and private sectors, like how to develop shared goals and alignment within a security organization, why soft skills and people skills are essential for building relationships, and how introspection can make great managers.
CISO Insider S1E4 - Change management and risk triage with Lisa Hawke
Everlaw VP of Security and Compliance Lisa Hawke joins CISO Insider to share her insights on the hidden skills necessary to succeed as an infosec leader and her journey from working in environmental law to security and compliance. Also, get some birding recommendations in Central Park.
CISO Insider S1E3 — The OODA Loop with J.J. Agha
Compass Chief Information Security Officer J.J. Agha joins CISO Insider to share some of the most important learnings from his career as a security leader: the many practical applications of the OODA loop in infosec, how COVID is forcing us all to become better communicators, and why creative problem solving can help us face the neverending challenges of ambiguity while working in tech.
CISO Insider S1E2 - “You have unlimited questions left” with Ty Sbano, Part 2
Sisense Chief Security & Trust Officer Ty Sbano returns for the second part of his interview with us on finding community within the infosec industry, plus some must-listen security podcasts, and things for early career professionals to look out for as COVID-19 extends into 2021.
CISO Insider S1E1 - "Cybersecurity is a mindset" with Ty Sbano, Part 1
We're excited to have Sisense Chief Security & Trust Officer Ty Sbano as our very first guest on the CISO Insider podcast. In part 1 of our chat, Ty discusses his path to the CISO role: his early beginnings, his learnings on the job, and how to find the right balance while building a career.
Blogs
Register for our upcoming live webinars, or listen to on-demand webinars.
Recent AstraZeneca Breach Illustrates Risk of Credential Leakage Across Cloud Apps
Yesterday, TechCrunch broke a story about pharmaceutical giant AstraZeneca, which experienced a leak affecting sensitive patient data. We think this incident is worth reviewing to learn more about how data exfiltration risk is distributed across the entirety of an organization’s SaaS infrastructure.
Recent AstraZeneca Breach Illustrates Risk of Credential Leakage Across Cloud Apps
.webp)
Yesterday, TechCrunch broke a story about pharmaceutical giant AstraZeneca, which experienced a leak affecting sensitive patient data. We think this incident is worth reviewing to learn more about how data exfiltration risk is distributed across the entirety of an organization’s SaaS infrastructure.
The Essential Guide to Secrets Scanning
While API keys are a necessary part of modern software development, they can also be a major security risk. If an attacker is able to steal an API key, they can gain access to the data and resources that key is meant to protect. There are a number of steps you can take to protect your API keys, secrets, and credentials and prevent them from being stolen. One such method that we will cover in depth in this guide is secret scanning.
The Essential Guide to Secrets Scanning
While API keys are a necessary part of modern software development, they can also be a major security risk. If an attacker is able to steal an API key, they can gain access to the data and resources that key is meant to protect. There are a number of steps you can take to protect your API keys, secrets, and credentials and prevent them from being stolen. One such method that we will cover in depth in this guide is secret scanning.
Understanding Sensitive Data Discovery: Classification and Tools
In its 2022 Cost of a Data Breach report, IBM notes that for 83% of companies, it’s not if a data breach will happen — but when. The sheer volume of data, as well as the difficulty in monitoring shadow IT and the shift to remote work, means that IT security teams face a persistent and ever-changing risk landscape that makes it extremely difficult to keep information secure.
Understanding Sensitive Data Discovery: Classification and Tools
In its 2022 Cost of a Data Breach report, IBM notes that for 83% of companies, it’s not if a data breach will happen — but when. The sheer volume of data, as well as the difficulty in monitoring shadow IT and the shift to remote work, means that IT security teams face a persistent and ever-changing risk landscape that makes it extremely difficult to keep information secure.
Schedule a live demo
