Blogs & Articles

Management of non-human identities has evolved in response to the rapid adoption of semi-autonomous AI agents. The complex nature of their interactions with both human operators and other agents means that security teams need a more sophisticated approach that uses behavioural context to determine an agent’s permissions. Firms are leveraging an identity management approach mirroring the complexities of human operator requirements, but at a vastly bigger scale.

Between 2025 and 2026, Zscaler embarked on a consequential shift start securing systems making decisions inside them, not just the access.

Global security vendor Sophos has announced its intention to purchase cyber assurance specialist Arco Cyber in a move it says will help companies strengthen their cybersecurity strategy and overall governance. Sophos has positioned the acquisition as a key part of its “Sophos CISO Advantage” proposition, a set of capabilities it says will equip customers with security operations management using agentic AI, integrated platforms, and trusted human expertise delivered via its

Autonomous AI agents can bring significant operational efficiencies, but magnify the risk of vulnerabilities if they are given access permissions that are closer to a human identity

In 2026, the most dangerous “insider” may not be a person at all. It may be a well-intentioned agent with too much authority, too little supervision, and unfettered access to the orchestration layer that binds the enterprise together.

CrowdStrike announces its intent to buy Seraphic Security and SGNL, kicking-off the industry's 2026 M&A activity!

How AI, post-quantum risk, and geopolitics are reshaping data’s role Richmond Advisory Group recently spoke with Jonathan Nguyen-Duy , CTO of Arqit , about the accelerating convergence of data management, post-quantum cryptography (PQC), AI, and geopolitical pressure. The conversation explored how data is shifting from a passive byproduct of digital systems into a strategic, regulated asset—one that underpins predictive security models, digital sovereignty, and trust in AI-d

As the cybersecurity industry looks ahead to 2026, the challenge is not a lack of predictions, but an overabundance of them—many detached from operational reality or focused on singular technologies in isolation. This blog takes a more grounded view, examining how advances in artificial intelligence, defensive AI automation, and cryptographic resilience intersect with geopolitical instability and long-standing threat behaviors. Rather than treating 2026 as a sharp inflection

Every year from November onwards, we start to receive press releases, “thought leadership” reports, LinkedIn posts and DMs about predictions around how the technology and cybersecurity markets will develop during the following year. This year the volume has increased, but the noticeable uniformity of the content points to the wider use of GenAI tools, producing a mass of generic predictions. So many people commenting on their experiences made us ask: should we just avoid maki

LevelBlue’s acquisition of Trustwave marks a significant step in the evolution of the managed security services market. The companies aim to form a global pure-play MSSP powerhouse, with over $1 billion in annual revenue, 2,000+ employees, and a customer base exceeding 30,000 organizations.

At the InfoSecurity Europe 2025 show in June, Richmond Advisory Group met with cybersecurity practitioners, vendors and service providers...

The future of API security lies not just in better detection and protection mechanisms, but in deeper integration with business processes and development workflows. As APIs continue to power digital transformation, their security will remain a critical enabler of business success.

A quick conversation about Google DeepMind's “A Framework for Evaluating Emerging Cyberattack Capabilities of AI.”

By Christina Richmond The Announcement The cybersecurity landscape continues to evolve with an increasing focus on proactive security...

We’re excited to announce that Rory Duncan , a renowned technologist, analyst, and writer, is bringing his expertise to Richmond Advisory...

Notes from OpenText World, 2024 I was genuinely impressed with what I heard at OpenText World (Las Vegas, November 18-21, 2024) about...

AT&T and WillJam Ventures , a private equity (PE) investor, announced today the creation of LevelBlue , a   joint venture to form a new,...

“Cybersecurity pundits, experts, practitioners, startups, established vendors, service providers and a host of analysts and media will...

By Carolyn Reuss Recently I’ve been talking to a lot of startups and small companies, and the cybersecurity awareness ranges from good...

Let's face it, comprehensive cyber insurance tailored to the unique challenges faced by small and medium-sized enterprises (SMEs) is a...