DevSecOps

Detection Latency Budget: Why Blast Radius Is an Integral

Detection Latency Budget: Why Blast Radius Is an Integral

AI, Application Development, Cloud, Platform Engineering, Security /

Most enterprises have invested in fast detection sensors while leaving batch correlation and manual runbooks as dominant latency stages. Armo’s five-stage pipeline framework reframes blast radius as a latency integral, not a threshold, with direct implications for how security and platform engineering teams should share ownership of time-to-containment. ECI Research finds the same structural gap appearing across AI operations and FinOps maturity models.

Detection Latency Budget: Why Blast Radius Is an Integral Read More »

Snowflake and Anthropic: Governed Enterprise AI at Scale

Snowflake and Anthropic: Governed Enterprise AI at Scale

AI, Application Development, Cloud, DevOps /

Snowflake and Anthropic have expanded their strategic partnership, embedding Claude models into Cortex AI products including Cortex Code, Snowflake Intelligence, and Cortex Agents. The move targets enterprises that need frontier AI capabilities operating directly on governed data without moving sensitive information outside their existing environment. ECI Research analysis breaks down what this means for IT decision-makers, developers, and the competitive AI data platform landscape.

Snowflake and Anthropic: Governed Enterprise AI at Scale Read More »

Wallarm AI Control Platform: Runtime AI Governance for Enterprise

Wallarm AI Control Platform: Runtime AI Governance for Enterprise

AI, Application Development, Compliance, Enterprise Software, Machine Learning /

Wallarm has launched the AI Control Platform, bringing runtime discovery, behavioral visibility, and inline policy enforcement to enterprise AI workloads. Built in partnership with AWS and available on AWS Marketplace, the platform targets the widening gap between AI deployment speed and AI governance maturity. With EU AI Act enforcement arriving in August 2026, the compliance case for continuous AI governance infrastructure is becoming unavoidable.

Wallarm AI Control Platform: Runtime AI Governance for Enterprise Read More »

NetFoundry Brings Zero Trust to AI Agents and LLM Gateways

NetFoundry Brings Zero Trust to AI Agents and LLM Gateways

AI, Application Development, Infrastructure, Security /

NetFoundry has launched enterprise MCP and LLM gateways that assign cryptographic identities to AI agents and endpoints, closing inbound ports and removing API key distribution from agentic deployments. The announcement addresses a critical security gap as multi-agent AI moves into production at enterprise scale. ECI Research analysis finds this positions NetFoundry at the intersection of zero-trust networking and AI governance, a category without a clear incumbent.

NetFoundry Brings Zero Trust to AI Agents and LLM Gateways Read More »

AI Agent Security: Tetrate and Ory Target Runtime Policy Gaps

AI Agent Security: Tetrate and Ory Target Runtime Policy Gaps

AI, Application Development, Cloud, Machine Learning, Security /

Tetrate and Ory have announced a joint solution that enforces dynamic, granular authorization on AI agent tool calls at the parameter level, built on an Envoy-based gateway. ECI Research examines the identity and governance gap the partnership addresses, and why parameter-level MCP control is becoming a production requirement for enterprise AI deployments.

AI Agent Security: Tetrate and Ory Target Runtime Policy Gaps Read More »

Palo Alto Networks & NVIDIA Reinvent AI Factory Security

Palo Alto Networks & NVIDIA Reinvent AI Factory Security

AI, Application Development, Enterprise IT Strategy, Security /

Palo Alto Networks has integrated Cortex XSIAM with NVIDIA’s DOCA Argus framework, bringing silicon-level, agentless security to NVIDIA AI Factory infrastructure. The partnership also places Prisma AIRS inside NVIDIA’s Enterprise AI Factory Validated Design, establishing a reference architecture for securing agentic AI at scale. ECI Research analysts examine what this means for enterprise security buyers and the teams building on AI infrastructure today.

Palo Alto Networks & NVIDIA Reinvent AI Factory Security Read More »

Willow Raises $7M to Govern AI Agents in the Enterprise

Willow Raises $7M to Govern AI Agents in the Enterprise

AI, Application Development, Enterprise Applications, Security /

Willow has launched from stealth with $7 million in seed funding to provide enterprises with visibility and access control over AI agents. The platform, already deployed across 5,000 Wix employees, addresses a governance gap that most enterprise security programs haven’t formally defined yet. ECI Research examines the market dynamics, competitive landscape, and what this means for IT decision-makers and development teams.

Willow Raises $7M to Govern AI Agents in the Enterprise Read More »

Copilot Data Exposure: Why 93% Confidence Hides a Real Risk

Copilot Data Exposure: Why 93% Confidence Hides a Real Risk

AI, Application Development, Cloud, Governance, Machine Learning /

A new survey of 851 IT leaders reveals a stark contradiction: near-universal confidence in Microsoft 365 AI governance coexists with a 29% data exposure incident rate. This note examines why the gap exists, what it means for ITDMs and platform teams, and how the governance tooling market is likely to respond.

Copilot Data Exposure: Why 93% Confidence Hides a Real Risk Read More »

Starburst Names Paras Malhotra CISO: Security Meets AI Data Strategy

Starburst Names Paras Malhotra CISO: Security Meets AI Data Strategy

AI, Application Development, Data Management, Enterprise Applications /

Starburst has appointed Paras Malhotra as Chief Information Security Officer, bringing deep security leadership from AWS and Datadog to its federated data and AI platform. The hire signals that Starburst is treating security and governance as competitive differentiators in the enterprise AI market. ECI Research analyzes what this means for ITDMs and developers evaluating federated data infrastructure.

Starburst Names Paras Malhotra CISO: Security Meets AI Data Strategy Read More »

Financial Services Faces a Two-Front Cyber Threat in 2026

Financial Services Faces a Two-Front Cyber Threat in 2026

Application Development, Cyber Security, DevSecOps, FinOps, Security /

Black Kite’s 2026 State of Financial Services report documents a simultaneous rise in direct ransomware attacks and vendor ecosystem vulnerabilities. Q1 2026 ransomware incidents jumped 76% year-over-year while critical CVEs across finance-concentrated vendors rose 387%. ECI Research examines what this two-front threat means for ITDMs and security teams.

Financial Services Faces a Two-Front Cyber Threat in 2026 Read More »