All news in category “Market Moves”

🏆 Check Point today announced its 2025 Americas Partner Award winners, recognizing partners for outstanding performance, growth, and technical excellence. The awards highlight partners' role in driving customer success and innovation across the region. World Wide Technology earned Partner of the Year, while NTSec Group was named Latin America Partner of the Year. These honors reflect a commitment to helping organizations stay secure.

🎓 Infinity Global Services has partnered with CompTIA to tackle the expanding cyber security skills gap. The collaboration pairs Infinity Global Services’ practical, hands-on training approach with CompTIA’s globally recognized, vendor-neutral certifications to create a clear pathway for career progression. The program aims to accelerate workforce readiness, improve measurable skill validation, and help organizations build stronger, more resilient cyber defenses.

🔐 Rona Michele Spiegel transitioned from an arts and multimedia background into cybersecurity by blending early human-computer interface work with formal study and hands-on industry experience. She helped establish a user experience practice at Deloitte, worked in technology governance at Cisco, earned a Master of Information and Cybersecurity, and later focused on cloud controls at Wells Fargo before joining Autodesk to lead security and trust for mergers and acquisitions. Spiegel emphasizes careful risk assessment in M&A—especially when absorbing small, resource-constrained companies—while navigating AI-driven complexity, addressing hiring and entry-level gaps, and preventing burnout through inclusive leadership and mentoring.

🚀 Cloudflare has acquired The Astro Technology Company and will integrate the Astro web framework into its platform while keeping the project open source under the MIT license. All full-time Astro employees have joined Cloudflare and the company pledges continued support for the Astro Ecosystem Fund alongside partners. Astro 6 is in public beta, featuring a redesigned development server built on the Vite Environments API, stable Live Content Collections, improved Content Security Policy support, and simpler APIs.

🤝 Cloudflare has acquired Human Native, a UK AI data marketplace that converts multimedia into licensed, structured datasets for AI developers. The team will help Cloudflare expand tools like AI Crawl Control, Pay Per Crawl and the AI Index, enabling publishers to expose structured updates and control access. It emphasizes licensed, high-quality data, creator compensation and greater control over how content is used by AI systems.

🔒 CrowdStrike announced intent to acquire Seraphic to extend the Falcon platform into browsers and enforce security within live sessions across Chrome, Edge, Safari, Firefox and agentic browsers on managed and unmanaged devices. The integration promises in-session zero-trust enforcement, protection for AI interactions, randomized JavaScript engine defenses, and agentless-style controls for contractors. Combined with SGNL’s continuous authorization technology, CrowdStrike aims to deliver unified, identity-driven browser security without forcing browser replacement.

🔐 CrowdStrike will acquire identity security startup SGNL for $740 million to add real-time, risk-aware authorization that grants or revokes access based on current signals rather than static permissions. The deal, expected to close in CrowdStrike’s fiscal Q1 ending April 30, will be paid mostly in cash with some stock subject to vesting. SGNL’s technology layers with existing identity systems from Okta, Microsoft, and AWS, evaluating contextual signals — user behavior, device posture, and threat intelligence — to enforce continuous authorization and address rising machine-identity and AI-agent risks.

🔐 Jamie Norton, CISO at ASIC and vice chair of ISACA, describes persistent cyber challenges across government and financial sectors. He points to legacy systems, weak foundational hygiene, and the need to align people, process and technology while warning that rapid advances in AI will change roles and tooling. Norton emphasizes executive accountability, mentorship, training and a mission-driven culture to retain talent, and champions the mantra Do the basics brilliantly.

🔒 CrowdStrike announced an agreement to acquire SGNL to enhance identity-first security across its Falcon platform. The acquisition will integrate SGNL into Falcon Next-Gen Identity Security, providing continuous, context-aware authorization for human, non-human, and AI agent identities. SGNL’s runtime enforcement layer will ingest Falcon risk signals and centralize telemetry to enable just-in-time access, replacing standing privileges with dynamic, risk-aware permissions to reduce the identity attack surface.

🔀 Security leaders aiming to switch industries must translate core security achievements into new contexts and plan moves strategically. Drawing on insights from veteran CISOs and recruiters, the article recommends cultivating adaptability, leveraging consulting or ISACs to learn sector nuances, and targeting structurally similar industries to ease transition. Candidates should document transferable outcomes, articulate how past programs meet new regulatory and operational models, and draw analogies to prove relevance.

🔒 ServiceNow will pay $7.8bn to acquire OT and IoT security specialist Armis, aiming to extend and enhance its security, risk and operational technology portfolios. The all-cash deal, expected to close in the second half of 2026, is positioned to more than triple ServiceNow’s security market opportunity. ServiceNow said Armis telemetry and asset insights will be integrated into its AI Control Tower to bolster AI governance and deliver automated remediation at scale. Executing on integration — notably tying Armis data into ServiceNow’s CMDB and workflows — is seen as the critical determinant of value realization.

🔐 ServiceNow announced a $7.75 billion cash acquisition of cybersecurity vendor Armis, its largest deal to date, aiming to integrate device and asset visibility into its AI-driven workflow platform. Executives say the purchase will create an end-to-end security exposure and operations stack that ties discovery, governance, and remediation across IT, OT, IoT and edge. Analysts welcomed the move but warned it may push organizations from best-of-breed tools toward suite consolidation, and that full integration will take time.

🔒 The Chief Trust Officer (CTrO) marks a shift from defending systems to safeguarding corporate credibility, responding to eroded customer confidence after breaches and AI concerns. Early adopters such as Atlassian, Salesforce and SAP and analyst research from Forrester show the role consolidates privacy, security, compliance and ethics. Unlike a traditional CISO, the CTrO focuses on reputation, transparency and customer trust while partnering with security teams to operationalize measurable signals of trust. Success depends on board visibility, leadership backing and demonstrable behavior change.

💡 The Foundry expert network now lets IT and business leaders build a visible B2B personal brand across German-language platforms such as CSO Deutschland, Computerwoche, and CIO.de. Contributors can publish technical or opinion pieces after topic coordination and may reach audiences beyond the German-speaking region. Apply to join to share perspectives on vendors, digital sovereignty, and management or security practices.

🔐 Frenetik, a Maryland cybersecurity startup, emerged from stealth with a patented approach called Deception In-Use that continuously rotates real identities and resources across Microsoft Entra (M365), AWS, Google Cloud and on-prem environments. By routing critical change details through out-of-band channels accessible only to trusted parties, defenders retain accurate visibility while attackers operate on stale intelligence and are more likely to be funneled into decoys and honeypots.

🛡️ November 2025 saw a flurry of cybersecurity acquisitions as major vendors raced to embed AI, observability and exposure management across their portfolios. Deals included Palo Alto Networks' $3.35bn purchase of Chronosphere, LevelBlue's completion of its Cybereason acquisition, and Bugcrowd's buy of AI app-security firm Mayhem. Other moves saw Safe Security acquire Balbix, Zscaler buy SPLX, and Arctic Wolf agree to acquire UpSight to bolster ransomware prevention. Collectively these transactions accelerate AI-driven automation and resilience across cloud, endpoint and software security.

🛡️ usecure has appointed Kevin Lancaster as a Non-Executive Director to accelerate its North American channel expansion. Lancaster, founder of ID Agent and former head of Channel Program, brings deep channel experience and a proven track record of scaling channel-first security and SaaS businesses. He will work with the board and executive team to help usecure become the leading human risk management solution for MSPs, supporting growth across distribution partners and more than 1,800 MSP partners worldwide.

🚀 Replicate is now part of Cloudflare, bringing its model packaging and serving tools into Cloudflare’s global network. Since 2019 Replicate has shipped Cog and a hosted inference platform that made running research models accessible and scaled during the Stable Diffusion surge. Joining Cloudflare pairs those abstractions with network primitives like Workers, R2, and Durable Objects to enable edge model execution, instant serverless pipelines, and streaming integrations such as WebRTC while supporting developers and researchers.

🔐 ServiceNow is reportedly in advanced talks to acquire identity-security startup Veza for more than $1 billion, a deal that could be announced next week. The move would pair ServiceNow's recent AI automation capabilities from Moveworks with Veza's Authorization Graph to map and govern permissions for human and machine identities. For customers, the acquisition aims to close trust and governance gaps around AI agents and non-human accounts, though integration, licensing, and standalone availability questions remain.

🔊 The cybersecurity market is awash in noise: vendors and investors chase flashy pitches while the long-standing vulnerabilities that cause real breaches remain neglected. The author argues CISOs don’t buy technology so much as they buy reduced risk and confidence, so purchases must fit roadmaps, integrate cleanly, and be sustainable. He prioritizes visibility, identity, automation that empowers people, and tools that reinforce fundamentals like patching and segmentation. Hype, overlapping products, and complexity are rejected in favor of practical reliability.