Blogs & Articles

I have always thought of IBM as a technology innovator. That has never really been the question for me. IBM has invented, reinvented, contributed to, or commercialized more enterprise technology than most companies ever will. It has deep engineering roots, real research credibility, and a long history of showing up in infrastructure markets before they are obvious to everyone else. What I did not fully appreciate before spending a day with IBM Consulting on Monday, May 4, was

With Mythos, the "hair on fire" of cybersecurity has become a bonfire.

Carol Anderson, President of Imagent Inc., interviewed Rock Lambros. Agentic AI requires new thinking about governance Richmond Advisory Group recently interviewed Rock Lambros , Director of AI Standards and Governance at Zenity and Founder of RockCyber. The conversation explored the inevitability and necessity of using AI to govern AI, with insights into humans in the loop, non-human identities, and OpenClaw. Why this matters Traditional governance thinking and processes

As attackers use AI to create threats at scale and at machine speed, agents are already being used by many MDR and DXR vendors and service providers to supply autonomous features that assist human operators and augment existing security tools.

They Are Design Signals Over the past year, a series of so-called “leaks” involving large language models (LLMs) and emerging agentic systems have captured industry attention. The most cited example is the exposure of system prompts and behavioral scaffolding behind models like Claude from Anthropic, alongside similar disclosures affecting models from OpenAI. These events have often been framed as isolated incidents or, alternatively, dismissed as overblown artifacts of jailb

As artificial intelligence systems become more capable and more embedded in business operations, a central question continues to surface: How do you ensure these systems behave in ways that are useful, safe, and aligned with human intent? One of the more influential answers to emerge in recent years is Constitutional AI , an approach pioneered by Anthropic . How AI moves from training to the reinforcement phase in "Constitutional AI" (AI generated image) At its core, Constitu

Management of non-human identities has evolved in response to the rapid adoption of semi-autonomous AI agents. The complex nature of their interactions with both human operators and other agents means that security teams need a more sophisticated approach that uses behavioural context to determine an agent’s permissions. Firms are leveraging an identity management approach mirroring the complexities of human operator requirements, but at a vastly bigger scale.

Between 2025 and 2026, Zscaler embarked on a consequential shift start securing systems making decisions inside them, not just the access.

Global security vendor Sophos has announced its intention to purchase cyber assurance specialist Arco Cyber in a move it says will help companies strengthen their cybersecurity strategy and overall governance. Sophos has positioned the acquisition as a key part of its “Sophos CISO Advantage” proposition, a set of capabilities it says will equip customers with security operations management using agentic AI, integrated platforms, and trusted human expertise delivered via its

Autonomous AI agents can bring significant operational efficiencies, but magnify the risk of vulnerabilities if they are given access permissions that are closer to a human identity

In 2026, the most dangerous “insider” may not be a person at all. It may be a well-intentioned agent with too much authority, too little supervision, and unfettered access to the orchestration layer that binds the enterprise together.