Skip to content

Priyanka Aash

Priyanka has 10+ years of experience in Strategy, Community Building & Inbound Marketing and through CISO Platform has earlier worked with marketing teams of IBM, VMware, F5 Networks, Barracuda Network, Checkpoint, and more. Priyanka is passionate about Entrepreneurship and Enterprise Marketing Strategy. Earlier she co-founded CISO Platform- the world’s 1st online platform for collaboration and knowledge sharing among senior information security executives.

Continuous Offensive Security Testing Is Becoming a Category. Here’s What Most Vendors Will Get Wrong.

Continuous Offensive Security Testing Is Becoming a Category. Here’s What Most People Will Get Wrong

A new label is showing up across the security market: continuous offensive security testing, or COST. The category is real, and it is overdue. After years of CTEM, ASM, BAS, and CART each carving off a piece of the problem, the industry is finally converging on the obvious idea: offensive testing should run continuously, not… Read More »Continuous Offensive Security Testing Is Becoming a Category. Here’s What Most People Will Get Wrong

SEBI AI Guidelines: What 10k+ Financial Entities Must Do

SEBI AI Guidelines: What 10k+ Financial Entities Must Do

SEBI’s May 5, 2026, circular (HO/13/19/12(1)2026-ITD-1_CIMGI/10873/2026) is addressed to every category of regulated entity in the Indian securities market — exchanges, depositories, brokers, mutual funds, custodians, credit rating agencies, merchant bankers, portfolio managers, investment advisors, and more. Over 10,000 entities. The subject: AI-driven vulnerability detection tools like “Claude Mythos” and the new risk dimensions they… Read More »SEBI AI Guidelines: What 10k+ Financial Entities Must Do

Verizon DBIR 2026: The Year Vulnerability Exploitation Beat Credentials. What It Means for Your Pen Testing Program

The Verizon 2026 Data Breach Investigations Report dropped this week, and for the first time in the report’s 19-year history, vulnerability exploitation has overtaken credential abuse as the top initial access vector. Exploited vulnerabilities now account for 31% of breaches, up from 20% the year before. Credentials dropped from 22% to 13%. Read past the… Read More »Verizon DBIR 2026: The Year Vulnerability Exploitation Beat Credentials. What It Means for Your Pen Testing Program

10 Questions to Ask Your AI Pen Testing Vendor Before You Sign

10 Questions to Ask Your AI Pen Testing Vendor Before You Sign

The shortlist looks identical. The architecture is not. Every AI pen test vendor on your shortlist will tell you their false positive rate is under five percent. Their demos will look impressive. Their decks will name the same frontier models. This is the problem. Frontier model access is commoditizing. Any team can wire an Anthropic,… Read More »10 Questions to Ask Your AI Pen Testing Vendor Before You Sign

Offensive Security Guide: BAS, CTEM, CART, Pen Test, & COST Explained

BAS, CTEM, CART, Pen Test, VA, AEV, COST: What Each Actually Does, and When to Use What

Every quarter a new three-letter acronym shows up in a vendor deck. Last year it was AEV. This year Gartner introduced COST. CTEM is everywhere. BAS has been around forever and still gets confused with red teaming. Pen test means six different things depending on who you ask. If you run a security program, the… Read More »BAS, CTEM, CART, Pen Test, VA, AEV, COST: What Each Actually Does, and When to Use What

Use Cases
Technology
About
Partner
Resources

FireCompass – An EC Council Ecosystem Company.
©2025 . All Rights Reserved.