< ciso
brief />
Tag Banner

All news with #resilience tag

74 articles

Azure’s Unified Approach to Cloud Resiliency

🔧 Azure reframes resiliency beyond simple availability metrics to emphasize sustained operation, recoverability, and trust under real-world constraints. The platform combines zone-first design, data protection, and cyber recovery with observability and automation to help customers meet sovereignty and regulatory needs. New tooling like Azure Infrastructure Resiliency Manager and the Resiliency Agent shift guidance to executable, IaC-driven remediation.
read more →

SaaS single points of failure threaten campuses

📘 Higher education now runs core academic operations on a few massive SaaS platforms, creating systemic single points of failure. When a major LMS was breached during finals week 2026, campuses lost access to rosters, grade books and coursework despite SLAs and certifications. The author argues IT must architect independent, read-only continuity layers synchronized from source systems to maintain operations during vendor outages or attacks.
read more →

Azure Chaos Studio Workspaces public preview

🧪 Azure Chaos Studio Workspaces is now in public preview, offering scenario-focused chaos engineering to validate application resilience. It provides curated outage scenarios (Zone Down, DNS Outage, SQL failover, etc.), a drag-and-drop Scenario Designer, and a managed Workspace that discovers resources and recommends applicable tests. Runs produce structured drill reports and integrations with GitHub Copilot and Model Context Protocol for automated workflows.
read more →

Stonehenge as a Model for Cybersecurity Architecture

🪨 The author uses Stonehenge as a metaphor for designing resilient cybersecurity architectures, arguing organisations must move from fragmented point solutions to a modular, platform-based approach. Palo Alto Networks emphasises a unified cyber data layer, Precision AI integration, and an Autonomous SOC to enable real-time detection and response across IT, OT, cloud, and edge. The piece highlights identity security, AI runtime protection, and supply-chain risks as critical pillars for long-term resilience.
read more →

Cybersecurity’s Shift From Protection to Survival

🔒 The piece argues that cybersecurity must move beyond a prevention-first mindset to a survival-focused discipline. It stresses that while traditional controls (MFA, patching, hardening) remain necessary, organizations need breach readiness: continuity, recoverability, tested incident response, and clear governance. Regulatory and market pressures (EU resilience laws, US disclosure and accountability) plus AI-driven acceleration make resilience an operational imperative.
read more →

AI Forces Security to Shift From Predictability

🛡️ AI is reshaping cybersecurity by breaking the long-held assumption of predictable, deterministic systems. Traditional prevention-focused controls remain important but are insufficient as AI agents, LLMs and automated development accelerate runtime change and attacker capabilities. Organizations must prioritize runtime visibility, use AI to augment defensive operations, rebuild vulnerability management and emphasize resilience and containment to manage evolving AI-driven risks.
read more →

SMB Cyber Readiness: What Strengthens or Breaks It

🔒 The ESET SMB Cyber Readiness Index 2026 finds 45% of small and medium businesses experienced a cyber-incident in the past year, yet confidence in resilience often rises among repeat victims. The report highlights common root causes—phishing, unpatched vulnerabilities, monitoring gaps and weak passwords—and notes a mismatch between headline-driven fears like AI malware and the mundane vectors attackers exploit. Preparation, clear decision authority, and disciplined reduction of attack surface are critical to withstand incidents.
read more →

NCSC: Act Now to Build Cyber Resilience

🔒 Paul Chichester of the NCSC warned at Infosecurity Europe that escalating technological change, geopolitical tensions and evolving threats make predicting cyber risk harder than ever. He highlighted hyper-connectivity, rapid tech transformation and state-backed cyber operations as key challenges, and urged stronger public-private collaboration. Chichester praised the Cyber Security and Resilience Bill and called for practical steps like reducing attack surface, addressing legacy systems, enforcing access controls and running incident exercises.
read more →

AlloyDB Hot Standby: Faster Failovers and Reliability

🚀 AlloyDB for PostgreSQL introduces a Hot Standby HA architecture that keeps the standby node actively replaying WAL records, reducing failover time and preserving cache warmth. This change eliminates standby database startup delays and minimizes post-failover performance degradation, improving RTO and stabilizing application throughput. Hot Standby is rolling out for PostgreSQL 18 and will reach earlier versions in months, with no extra cost and retention of the 99.99% SLA.
read more →

AWS launches next-generation Resilience Hub

🔧 The next generation of AWS Resilience Hub is now generally available, offering platform engineering and SRE teams a centralized console to assess and strengthen workload resilience. It introduces a three-level application model, automated dependency discovery, generative AI-powered failure mode analysis, modular resilience policies, and organization-wide reporting. Integration with AWS Organizations enables central policy definition and posture monitoring across accounts and regions, and existing customers can migrate at their own pace.
read more →

AWS ARC Region Switch: Lambda Event Source Mapping

🚦 Amazon Application Recovery Controller (ARC) Region Switch adds a Lambda event source mapping execution block to automate coordinated failover of event-driven streams across Regions. The block enables or disables Lambda event source mappings for Kinesis, DynamoDB Streams, MSK, and SQS to prevent duplicate processing. Customers can chain a disable block before an enable block, or run plans in ungraceful mode for impaired Regions. Native cross-account support lets a single plan span multiple AWS accounts.
read more →

UK Cyber Sector Revenue Rises as Cyber Resilience Grows

📈The UK cybersecurity sector generated £14.7bn in revenue last year and contributed £9.1bn in gross value added, the government reported on 13 May. Employment rose to nearly 70,000 and the number of firms climbed to 2,603, with AI-focused cybersecurity vendors growing sharply. The government unveiled the Cyber Resilience Pledge and plans legislation via the Cyber Security and Resilience Bill to tighten standards. Experts warn that advances in AI increase risks and call for stronger, harmonized incident reporting and defences.
read more →

Scheduled Scaling for AWS Lambda Managed Instances

🚀 Scheduled scaling is now available for AWS Lambda Managed Instances, using Amazon EventBridge Scheduler to set one-time or recurring adjustments to function capacity limits. This lets you proactively raise capacity before expected peaks and lower it (including to zero) during idle periods to balance performance and cost. Schedules can be created via the EventBridge Scheduler console, AWS CLI, AWS SDKs, AWS CDK, or AWS CloudFormation and are available in all Regions that support Lambda Managed Instances.
read more →

EKS Adds Karpenter Support for ARC Zonal Shift and Autoshift

🔁 Amazon EKS now supports Amazon Application Recovery Controller (ARC) zonal shift and zonal autoshift when using the open-source Karpenter for compute provisioning. ARC automates redirecting in-cluster network traffic away from an impaired AZ and can perform practice runs to validate cluster behavior. During a zonal shift, Karpenter stops provisioning in the impacted AZ, halts voluntary disruptions there, and avoids scheduling actions that depend on that zone. Enable support by setting ENABLE_ZONAL_SHIFT.
read more →

CISA's CI Fortify: Guidance for Isolation and Recovery

🔒 CISA has launched CI Fortify, urging water, energy, transportation and communications operators to plan to disconnect from third-party networks and maintain essential services if targeted by cyber-attacks. The guidance sets two core objectives: isolation — proactively segmenting OT from business and upstream networks to keep services running in degraded communications — and recovery — documenting systems, backing up critical files and rehearsing component replacement or manual operation. Operators are advised to identify critical customers, set service targets, update continuity plans for prolonged isolation, and share the guidance with vendors, integrators and managed service providers.
read more →

Resilient by Design: When Networks Become Targets Now

🔒 Organizations have long focused on cyber defenses against breaches and ransomware, but new geopolitical tensions show major disruptions can originate in the physical world and target cloud and network infrastructure. As cloud systems become integral to national economies, the network itself becomes an attack surface requiring resilient-by-design architecture. Enterprises must embrace operational resilience, redundancy, and distributed controls to mitigate physical and systemic risks.
read more →

CISA Urges Critical Infrastructure to Prepare for Isolation

🔒 CISA has launched the CI Fortify initiative to help critical infrastructure operators prepare to operate in isolation from the internet and third-party services during major cyber incidents. The program focuses on controlled isolation—distinct from traditional air-gapping—combined with local manual operations and rapid restoration. CISA will provide targeted assessments, guidance, and exercises during a pilot phase while urging operators to map dependencies and invest in resilient architectures.
read more →

CISA Launches CI Fortify to Bolster Infrastructure Resilience

🔒 CISA released new guidance called CI Fortify to help critical infrastructure organizations prepare to operate through crises and conflicts and continue delivering essential services while under cyberattack. The guidance centers on two emergency capabilities: Isolation — proactively disconnecting from third-party dependencies and operating without reliable telecommunications — and Recovery — rapidly restoring compromised systems while isolated. CISA urges organizations to begin investing now, test recovery plans, and practice local and manual operations to maintain a baseline of continuity.
read more →

ODNI 2026 ATA Signals Shift: Private Sector on Alert

🔍 The ODNI’s 2026 Annual Threat Assessment pivots from long-term, global forecasting to active operational reporting and a homeland-centric focus. This shift de-emphasizes detailed tracking of state-led infrastructure campaigns and named operations, leaving gaps in visibility on pre-positioned access. CISOs and CROs are urged to fund a resilience premium and prioritize identity, infrastructure continuity, algorithmic defense, and intelligence integration.
read more →

Amazon MSK Replicator: Enhanced Consumer Offset Sync

🔁 Amazon has added enhanced consumer offset synchronization to MSK Replicator, improving bidirectional Kafka replication so consumer applications resume from the correct position when moved across clusters. This lets teams move producers and consumers independently, in any order, without risking data loss or duplicate processing. Previously, offsets synchronized only when producers and consumers ran on the same cluster, which required careful migration sequencing. The feature can be enabled via the AWS Console, AWS CLI, or AWS CloudFormation and is available in all Regions where MSK Replicator is offered.
read more →