This quarterly report highlights the latest developments in AI security and reveals the economic, political, and social forces shaping what’s coming next.

Learn why deploying AI Agents safely matters—drawing lessons from the Slammer worm era to guide today's responsible, controlled tech adoption.

Anne Marie Zettlemoyer (AMZ) is a seasoned CISO and trusted security executive with more than two decades of experience leading cybersecurity, risk, fraud, and data protection programs across Fortune 500 enterprises, high-growth technology firms, government, and startups. She specializes in building modern security architectures, aligning cyber investments to business outcomes, and helping organizations operationalize security as a strategic advantage. AMZ currently advises companies ranging from early-stage innovators to global enterprises. 

Nipun is a Founder, CEO, and a seasoned cybersecurity executive with over 15 years of experience driving security innovation across Fortune 500 enterprises and high-growth startups. As founder of a new security startup, he specializes in security agentic software development. His expertise spans AI security, DevSecOps, Application Security, SIEM, and go-to-market strategy for security products. As a GTM-focused operator with deep technical roots as a reformed penetration tester, he has helped multiple companies achieve significant growth milestones and guided companies through successful acquisitions.

Learn how to balance developer agility with robust security through automated pipelines, cloud-native guardrails, and secure-by-default building blocks based on OWASP, NIST, and CIS standards.

Kevin has over 30 years of experience in supporting Microsoft technologies for corporation of all sizes. Kevin has supported the Microsoft cloud since it was first known as Business Productivity Online Suite (BPOS) (predecessor to Office 365) and SQL as a Service (later called Azure). He has a broad background in leveraging Microsoft tooling to support productivity, security, device management, data governance and compliance, and identity and access management (IAM). Kevin has worked directly or in support of companies across all segments including Financial, Healthcare, Manufacturing, Technology, and Retail.

For most organizations, using more than one cloud environment is common for a variety of reasons. In the past, many security teams felt like they were stretched thin trying to cover multiple cloud environments, but today we’ve learned a lot about what works and what doesn’t in multicloud security architecture, policy and operations. With huge growth in both commercial and open source security tools and services that can accommodate multiple leading clouds, and better DevOps and cloud engineering practices in place within pipelines and operations teams, there’s lots of design patterns and best practices that enterprise teams can embrace. In light of recent outages with some of the larger providers, resilience and continuity is also top of mind for cloud deployments, as well.

The AWS and Azure cloud outages this past fall, and predictions by some that we will likely see another hyperscaler outage in 2026 at least of the order of magnitude of these last ones, have many organizations considering their cloud resiliency strategy. For most orgs, using more than one cloud environment is common, but given the impact of the recent outages, some may be wondering if doubling-down on their multicloud strategy is the way to ensure continuity.

Use this template to define clear, actionable security standards for your DevSecOps team which developers can consistently reference and implement.

Learn strategic approaches to talent management, career pathing, and investing in high-performing team members.