< ciso
brief />
Tag Banner

All news with #data security tag

99 articles · page 2 of 5

How CISOs Should Use DSPM to Inform Risk Decisions

🔎 Data security posture management (DSPM) is less about buying a single product and more about adopting a mindset: identify where sensitive data lives, quantify its value-at-risk, and use that information to prioritize remediation and investments. Full DSPM platforms can demand one to three dedicated FTEs to maintain, so many organizations should start with manual inventories, lightweight scanners or existing DLP outputs. The piece highlights practical scenarios—patch prioritization, M&A integrations, and IAM reviews—and warns that rising agentic AI and vendor access requirements make timely, measurable data discovery increasingly urgent in 2026.
read more →

Secure Data Movement Is the New Zero Trust Priority

🔒 New Cyber360 research shows the overlooked Zero Trust gap is not identity or endpoints but the movement of data across boundaries. The survey of 500 government, defense, and critical services leaders found 84% see cross-network data sharing as a heightened cyber risk and 53% still use manual transfer processes. That mismatch creates an attack surface as AI accelerates operations; layered approaches combining Zero Trust, data-centric controls, and cross-domain technologies are recommended for secure, near-real-time sharing.
read more →

Amazon Connect raises attachment limits to 100 MB globally

📎 Amazon Connect now supports attachment file sizes up to 100 MB for chat, cases, and tasks, increased from the previous 20 MB limit. Administrators can enable the higher limits and configure custom file extensions for attachments across chat, email, cases, and tasks via the Amazon Connect admin website or APIs. This reduces back-and-forth by allowing customers to upload diagnostic bundles, log archives, signed contracts, and other larger documents directly during interactions; the feature is available in multiple AWS Regions.
read more →

BigQuery Integrates Google Earth AI Models and Datasets

🛰️ Google has extended geospatial analytics in BigQuery, integrating Google Earth AI models and new datasets to enable richer planetary and community insights. Announced at Google Cloud Next '26 and with recent March updates, the release includes Street View Insights (GA) with upcoming LiDAR, experimental Aerial and Satellite Insights, and licenseable Aerial & Satellite Models in Model Garden. These capabilities aim to accelerate infrastructure assessment, logistics planning, renewable-energy siting, and public-sector decision-making by bringing multi-perspective imagery and derived datasets directly into analytics workflows.
read more →

Amazon Athena Adds Managed Connectors for 12 Sources

🔗 Amazon Athena now provides managed connectors for 12 external data sources, including DynamoDB, PostgreSQL, MySQL, and Snowflake, enabling queries against data outside Amazon S3 without deploying connector infrastructure. Athena creates and manages AWS Glue Data Catalog federated connectors on your behalf and registers each source as a federated catalog. You can query those sources alongside S3 data and optionally apply fine‑grained access controls through AWS Lake Formation. Federated queries are available in all standard AWS Regions except AWS GovCloud (US) and China Regions.
read more →

Google Announces Spanner Omni: Spanner Runs Anywhere

🚀 Google has previewed Spanner Omni, a downloadable edition of Spanner that runs outside Google Cloud — on-premises, multicloud, hybrid, and air-gapped environments. It delivers Spanner’s distributed SQL capabilities including high scalability, availability, strong consistency, and multimodal features while replacing cloud dependencies with a Colossus-like storage layer and a software TrueTime alternative. The developer preview is available for non-production use; commercial access requires engaging Google.
read more →

Unifying Analytical and Operational Data for AI Agents

🚀 Google Cloud introduces its Agentic Data Cloud to remove the barrier between analytical history and live operational data, enabling real-time AI decisioning. By integrating AlloyDB, BigQuery, and Spanner with features like Lakehouse federation, Reverse ETL, Spanner Columnar Engine, and Datastream CDC, the platform aims to eliminate latency and brittle pipelines. It also expands Knowledge Catalog to provide unified governance and reduce agent hallucinations.
read more →

Google Cloud Databases: New Agentic Data Cloud Updates

🧭 Google announced the Agentic Data Cloud, an AI-native architecture that integrates models, analytics, and operational databases to ground agentic applications in trusted, real-time data. The release emphasizes embedding AI across the data stack, unifying transactional and analytical workloads, and simplifying enterprise deployments. New developer tools include Vibe coding integrations with Google AI Studio, modular Tools for Data Agents and onboarding/observability agents, while AlloyDB gains large-scale vector search and optimized in-database AI functions.
read more →

AWS Glue Adds OAuth 2.0 Support for Snowflake Connectivity

🔒 AWS Glue now supports OAuth 2.0 for native Snowflake connectivity, allowing customers to read from and write to Snowflake without sharing persistent user credentials. This token-based authorization uses temporary access tokens to eliminate credential management, enabling granular permissions and improved auditability. The built-in AWS Glue Snowflake connector with OAuth is available in all AWS commercial regions, simplifying secure data integration.
read more →

AWS Clean Rooms Adds Configurable PySpark Properties

⚙️ AWS Clean Rooms now supports configurable Spark properties for PySpark analyses, allowing customers to tune memory overhead, task concurrency, and network timeouts on a per-job basis. This capability helps teams adapt resource allocation to specific performance and scale requirements, improving throughput and cost efficiency. For example, pharmaceutical researchers collaborating with healthcare partners can set tailored memory and concurrency settings for large real-world clinical datasets to optimize runtime and expenses.
read more →

Amazon OpenSearch Serverless Adds Derived Source Support

🔧 Amazon OpenSearch Serverless now supports Derived Source, a feature that reconstructs the _source field on demand using indexed values instead of storing a separate copy. This reduces storage consumption for collections such as time-series and log analytics that contain many indexed fields. You can enable Derived Source at the index level when creating or updating mappings. The feature is available today in all AWS Regions where OpenSearch Serverless is supported.
read more →

Achieving Near-100% Agent Accuracy with Context Engineering

🧭 This article explains why agentic workflows need near-100% accuracy when they query enterprise databases and how comprehensive context engineering can deliver it. It introduces QueryData as a tool that combines three context pillars—Schema Ontology, Query Blueprints, and Value Searches—to guide LLMs toward correct, auditable SQL. A real-estate tenant onboarding example illustrates the risk of compounding errors, and the post recommends templates, facets, and database-aware value lookups to ensure both accuracy and explainability for human-in-the-loop verification.
read more →

Amazon Quick adds document-level ACLs for S3 KBs now

🔐 Amazon Quick now supports document-level access control lists (ACLs) for Amazon S3 knowledge bases, enabling granular permissions for documents and folders. You can configure ACLs with a centralized global ACL configuration file or with per-document metadata files for faster, targeted permission updates. ACLs are permanent at knowledge base creation and documents without an ACL entry are not ingested. The feature is available in all AWS Regions and is documented in the Amazon Quick User Guide.
read more →

BigQuery read/write interoperability for Apache Iceberg

🧊 Google announced preview read/write interoperability between BigQuery and Iceberg-compatible engines via the Google-managed Iceberg REST Catalog. The capability lets BigQuery, Trino, Spark, Flink and others create, update, and query a single Iceberg table type while enforcing unified governance and table-level access controls. Customers can offload compaction and garbage collection to BigLake to reduce small-file and metadata bloat and improve query performance.
read more →

Rightmove modernizes property search with unified cloud data

🏠 Rightmove migrated from siloed on-premises databases to Google Cloud to build a unified analytics and AI platform it calls the data hive. Using BigQuery, Vertex AI, and Looker, the company extracts metadata from listings and images to deliver personalized search, agent-assist messaging, and an Automated Valuation Model. The hub-and-spoke architecture centralizes governance while enabling business units to run tailored forecasting and ML use cases. Around 300 staff now use the platform to convert data into operational and commercial value.
read more →

Amazon CloudWatch Logs IA Adds Analytics and Masking

🔒 Amazon CloudWatch Logs Infrequent Access (Logs IA) now supports expanded analytics and data protection capabilities, including OpenSearch PPL and OpenSearch SQL query support. These additions let customers run advanced, flexible queries on infrequently accessed logs while keeping data consolidated natively on AWS. Built-in data protection can automatically detect and mask sensitive information in logs, helping organizations meet security and compliance requirements without manual redaction. Logs IA remains a lower-cost ingestion class with existing features like Logs Insights Query Language, S3 export, and encryption, making it suitable for ad-hoc troubleshooting and forensic analysis.
read more →

How CISOs Should Respond to Shadow AI Risks and Governance

🔒 Shadow AI — the unapproved use of AI tools and embedded AI features — is proliferating as employees seek productivity gains and vendors quietly enable capabilities. CISOs should first assess data sensitivity, storage practices and whether corporate inputs are being used to train models. After evaluating risk, organizations must choose to block or formally integrate tools and apply mitigations such as filtering, acceptable-use policies and targeted employee education. Clear governance, cross-functional review and simple approval pathways help balance innovation with security without unduly punishing productive behavior.
read more →

Amazon Redshift boosts new-query performance by 7x

🚀 Amazon Redshift now accelerates new queries by up to 7x, improving response times for low-latency SQL workloads such as BI dashboards, ETL pipelines, near‑real‑time analytics, and autonomous AI agents. The service uses a composition-based compilation optimization that lets queries start immediately while highly optimized, query-specific code is compiled in the background. This enhancement is enabled by default across provisioned clusters and serverless workgroups in commercial AWS Regions, requires no customer action, and is provided at no additional cost.
read more →

CISOs Reevaluate Data Protection Amid Rapid AI Use

🔐 CISOs are updating data protection strategies as employees rapidly adopt AI tools that access and expose sensitive information. Leaders such as Scott Kopcha at Goodwin Procter and experts from SANS and Health-ISAC warn that traditional controls and many DLP tools are insufficient for the multiple ways AI can interact with data. Organizations are prioritizing data classification, identity and access management, continual monitoring, zero-trust, and ongoing vendor evaluations to close gaps and show due diligence.
read more →

AWS Glue Data Catalog: IAM Permissions for S3 Tables

🔐 AWS announced IAM-based authorization in the AWS Glue Data Catalog for Amazon S3 Tables and Apache Iceberg materialized views. The change allows administrators to consolidate storage, catalog, and query engine permissions into a single IAM policy, simplifying access management for analytics services. Customers can still opt into AWS Lake Formation for fine-grained controls and manage access via Console, CLI, API, or CloudFormation.
read more →