GRC stories

EC-Council launches the Global CISO Council to unify AI governance, tech risk oversight and regulatory response for senior security leaders.

Stryker says a cyber attack disrupted internal systems, with investigators examining mobile device tools as experts warn of rising state-linked threats.

Sweep lands SailPoint, Wiz, Vanta and Varonis as security vendors seek tighter control and audit-ready visibility over Salesforce sprawl.

Tenable appoints veteran cybersecurity sales leader Dino DiMarino as chief revenue officer to drive global growth in exposure and AI risk.

Chartis names SAS a category leader in AI governance, spotlighting Viya's model controls as demand for robust oversight accelerates.

Gumloop secures USD $50m Series B to scale workplace AI agents, deepen security tools and court larger enterprise customers.

OpenAI agrees to buy Promptfoo, aiming to embed automated security testing and red-teaming tools directly into its Frontier AI coworker platform.

AI now touches production databases in most firms, but Liquibase warns governance controls lag far behind the velocity of change.

Vicarius launches vIntelligence to continuously validate real-world exploitability and close the loop between detection, remediation and proof.

Diligent unveils AuditAI, an agentic AI suite that cuts audit admin by up to 70% while turning board-level risk signals into concrete actions.

OpenLegacy debuts an AWS-integrated hub to modernise mainframes incrementally, enabling parallel legacy-cloud operations with less risk.

KnowBe4 unveils AI-powered Custom SAPA agent to tailor cyber awareness tests to each organisation's policies, tools and real-world risks.

Gallagher will debut its AccessNow cloud platform at ISC West 2026, pitching an integrated vision for future access control design.

Cynomi is urging MSPs to tap booming demand for third-party risk services as supply chain attacks surge and compliance rules tighten.

GTIA has launched PeerTrust Circles, a security-led peer network helping IT service leaders benchmark trust, resilience and maturity.

AutoRek unveils RegToolKit, a real-time regulatory compliance hub mapping rules to controls, audit trails and breach remediation.

Attackers are ditching malware for stolen identities, misconfigurations and abused AI tools, Google warns in its latest cloud threat report.

Data specialist Melissa debuts a podcast probing how flawed customer and identity data fuels risk, fraud and compliance headaches.

Workiva launches AI-ready GRC platform to deliver real-time audit, automated controls testing and connected reporting for finance and risk teams.

Consolidated GRC platforms are turning box-ticking compliance into strategic value, says Workiva, as AI raises the stakes on data quality.