As we approach the season of gratitude, the cybersecurity landscape offers reasons to be thankful: the CISO role is successfully transforming into a strategic business enabler, while the recent dismissal of a landmark legal case offers temporary relief on personal liability. This month’s news also highlights how top security leaders are leveraging new metrics to prove business value, commanding higher compensation, and leading a vital new initiative to replace outdated security "superstitions" with actionable, proven cyber hygiene.

October 2025 was the deadline. For New York’s general hospitals, the state didn’t just raise the bar, it re-wrote the rulebook. The new hospital cybersecurity regulations (codified at 10 NYCRR § 405.46) put prescriptive, repeatable, and measurable obligations on hospitals that go well beyond the federal HIPAA Security Rule.

From New York hospitals preparing to meet new mandates requiring a dedicated CISO, federal agencies ramping up AI for cyber defense, and experts weighing in on the Heathrow cyberattack, to CISOs embracing containment-focused strategies, shadow AI emerging as a major governance challenge, September proved to be a month of major, game-changing cybersecurity developments.

From increasing personal liability in the CISO role and NIST’s plan to take on AI security, to Federal CISO Mike Duffy’s encouragement of community dialogue at Black Hat USA, and an electronics manufacturer's recent ransomware report to the SEC, August was a month full of impactful and industry-changing cybersecurity news stories.

We are delighted to announce that Harshal Mehta, Vice President and Chief Information Security Officer (CISO) at CWT, has joined our advisory board as a strategic CISO advisor. Harshal brings over 18 years of global cybersecurity leadership, including senior roles at Fortune 500 companies and extensive consulting experience as an ex-Big 4 leader.

We were honored to have CISO Neda Pitt join us as our featured guest for our masterclass: Your First 90 Days as a CISO: The Blueprint for Strategic Success. The session provided a clear, honest look at what moves the needle when stepping into a new CISO role.

In this month’s CISO story roundup, discover why CISOs are burning out under impossible pressure, how AI is shaking up cybersecurity on both sides of the fight, and why the human factor remains the biggest vulnerability, even the strongest defenses can’t ignore it. 

We are proud to be named a Vendor to Watch in Omdia’s Market Landscape: Cybersecurity Data Fabrics 2025 report. Learn more about Cybersecurity Data Fabrics and how they solve key challenges in today’s security operations.

For CISOs, CIOs, and risk leaders, the HHS 405(d) cybersecurity framework provides clear, sector-specific guidance that balances regulatory expectations with operational realities. Learn more in our blog.

From grappling with LLM hype to combating sophisticated cybercriminal groups and managing increased burnout, June’s CISO stories highlight critical industry insights and dig into emerging security trends.

Preemptive Cybersecurity isn’t a buzzword. It’s a paradigm shift. Learn more about how this approach can help security leaders and their teams leverage data and AI to outmaneuver threats before they materialize.

We were honored to have Lucas Moody, SVP & CISO of Alteryx and Onyxia Advisor, join our CEO and founder, Sivan Tehila, for a masterclass on one of the most pressing and transformational topics for CISOs today: Data-Driven Program Management.

In May, cybersecurity stories made global headlines. Learn more about the recent Coinbase cyber attack and Scattered Spider ransomware attacks, and get a glimpse into how CISOs are leaning into AI tools to reduce cost pressures.

Onyxia Cyber is proud to announce we have won the ‘Hot Company AI Platform for Cybersecurity Strategy Analytics’ and ‘PioneeringCybersecurity Program Performance Management’ Global Infosec Awards from Cyber Defense Magazine (CDM), the industry’s leading electronic information security magazine.

This month's roundup covers critical areas such as strengthening cyber-resilience, refining vulnerability management practices, navigating economic volatility, addressing budget shortfalls, and adapting to the rapidly evolving impact of AI on cyber threats and regulations. Each of these topics provides crucial insights for leaders aiming to secure their organizations in an increasingly complex environment.