Shmoocon 2025: The End of an Era and What Comes Next
After 20 years, Shmoocon feels different. The scrappy hacker conference has grown up, and so has the security industry. Here are the key insights from what m...
Blog
Recent posts
Why Your OT Environment Needs Its Own Security Posture Management Strategy
IT Security Posture Management won’t cut it for operational technology. Learn how to build OT-specific SPM that actually protects your industrial systems wit...
Why Your Phishing Simulations Might Be Hurting More Than Helping
Phishing simulations are everywhere, but they can backfire spectacularly. Learn when they work, when they don’t, and better alternatives for measuring real-w...
Building a Continuous Security Posture Assessment Program That Actually Works
Move beyond annual security assessments to continuous monitoring and improvement. Learn how to build a security posture assessment program that keeps pace wi...
From MVSP Checklist to Security Reality: Your 90-Day Implementation Roadmap
Ready to implement MVSP but don’t know where to start? Here’s your practical 90-day roadmap to turn the Minimum Viable Security Product checklist into real s...
Beyond the Click-Through Rate: Measuring Real Security Awareness Training Success
Stop relying on completion rates alone. Learn how to measure the actual effectiveness of your security awareness program with metrics that matter.
Attack Path Mapping + SPM: The Dynamic Duo of Cyber Risk Management
Discover how combining attack path mapping with security posture management can supercharge your risk prioritization and management strategies.
Security Posture Management: Beyond the Buzzword
SPM isn’t just another acronym to add to your tech stack. It’s a proactive approach that could be the game-changer your security strategy needs.