At UC Irvine’s Digital Leadership Agenda 2026, moderated by Nicole Perlroth, Garrett Hamilton illustrates what those blind spots can look like: “We believed it was deployed.” “It was turned on.” “It should have stopped this.” Except one exception, one policy gap, one control not applied at scale — and assumptions replace reality. The real problem isn’t visibility. It’s continuously validating intent against execution. Learn more about Reach → reach.security/ Shift thinking left of boom → reach.security/blog/security… #Cybersecurity #ExposureManagement #SecurityLeadership

Reach sponsored CrowdTour Dallas yesterday. Nick Lerach and Scott White ran the table. Great sessions on AI-powered defense and the agentic SOC, a packed room, and a customer panel worth sitting in for. We raffled off a pineapple pager. It went to someone deserving, presumably. Thanks to CrowdStrike for putting it on, and to everyone who stopped by the table! #aipowered #crowdtour

How do CISOs feel about drift? Misconfigurations rarely look like incidents. A setting shifts, posture weakens, and nothing announces it until it already matters. That is a hard seat for whoever owns posture. Without a clear view of what changed, you are working secondhand, leaning on the team to tell you what moved and whether it hurt. Nancy Phillips, CISO at Ensemble Health Partners, describes the other side. When she can see what a control was, what it changed to, and whether that helped or hurt, she answers for herself. An open port closing reads as a clear win. A risky edit gets caught early. In her words, she would rather learn to fish than fire-drill her team. Reach surfaces the drift that matters and explains why, so the answer is right there instead of three Slack threads away. Why misconfigurations keep beating mature stacks: reach.security/drift-researc… #configurationdrift #ctem

Sporting clays with GuidePoint Security on Friday. Charles Connolly went on Reach's behalf. He says he hit a few. We believe him. Great company, quality conversations, no laptops. Thanks to GuidePoint for putting it together. #Cybersecurity #ReachSecurity

At Black Hat last year, Garrett Hamilton asked Nicole Perlroth what she wanted the next five years of security to look like. She didn't give the optimistic answer. She said she was genuinely terrified. Zero-day exploitation at scale, fully automated. Attackers turning AI into infrastructure of their own. A year isn't five. But it's enough to check the tape. Within weeks of that conversation, a state-sponsored group hijacked an AI coding tool to run most of a cyber-espionage operation with limited human direction. It found and exploited weaknesses faster than any human team could. The five-year fear was already operational. The more instructive thing she said was that most breaches still come down to fundamentals, not novel technique. That has held too. When Microsoft disclosed the Storm-2949 campaign last month, there was no malware involved at all. The attackers took a single compromised identity and moved through tokens and permissions the environment already trusted. A cloud-wide breach built entirely on access that was broader than it should have been. AI has not opened a new door into the enterprise. It has collapsed the time between the moment a control drifts from its intended state and the moment that drift becomes a breach. The optimism Nicole allowed herself rested on the same point: getting the fundamentals right, continuously, is still what decides this. The work is less about adding tools than about verifying that the controls already in place are doing what they were bought to do. What are security leaders saying about configuration drift? Read here → reach.security/drift-researc… #ai #cybersecurity #configurationdrift

What a week! Today's the last day to catch us at Gartner Security & Risk Management Summit. If you haven't stopped by yet, we're at booth 118. Tyler, Nelson, Nadine, and Cain are there until the show floor closes today. Drop in for a demo, a charger, and a straight conversation about your security controls.  #GartnerSEC #cybersecurity

Offense is running on AI. Defense has to as well. That's the throughline of Garrett Hamilton's conversation with Jay Wilson, CIO and CISO at Insurity, on The Security Strategist, hosted by Shubhangi Dua at EM360Tech. What they get into: ⇢ AI is collapsing the skill gap for attackers and scaling how fast they can find a weakness, misconfiguration, or vulnerability across almost any business. ⇢ The damage often doesn't start with an exploited vulnerability. It starts with controls that were weaker than they should have been. ⇢ Organizations are running dozens of security tools, and too many of them sit underused or misconfigured. ⇢ Prevention is coming back into the conversation after years of spending tilted toward detection and response. ⇢ AI has a real place in defense, but automated remediation needs to stay controlled, not fully autonomous. Thanks to Shubhangi Dua and the EM360Tech team for having us. Full episode on EM360Tech.com: em360tech.com/podcasts/cyber… The configuration drift research behind the conversation → reach.security/drift-researc…

We're at Gartner Security & Risk Management Summit this week in Oxon Hill, MD. Come find us at Booth 118. We'd love to show you how Reach helps teams see, understand, and remediate configuration drift across their security stack. Tyler, Nelson, Nadine, and Cain are on-site through Wednesday. Stop by, say hello, and snag some swag. #GartnerSEC #cybersecurity

Great being at the Dyfnz Cyber & AI Summit in South Jordan this week. 125 security, network, and infrastructure leaders in one room exploring what AI means for their business and what they can do to protect their networks. Thanks to the Dyfnz team for having us. See you at the next one. #reachsecurity

AI-powered attacks don't wait for your team to catch up. Misconfigured controls, unused capabilities, and configuration drift are exactly what adversaries are looking for, and they're finding them faster than ever. If you're at #GartnerSEC, come find us at Booth #118. We'll show you how Reach closes those gaps before they become a breach. June 1–3 | National Harbor, MD #GartnerSecuritySummit #Cybersecurity #CTEM #ConfigurationDrift

Threat actors used to need days or weeks to exploit a vulnerability. Now AI lets them do it in seconds. Most security teams are already buried. Too many tools, too many alerts, manual processes that can't keep pace, and break-glass changes that get made and forgotten. Keeping everything configured and optimized correctly is a full-time job on its own. Nancy Phillips, Chief Information Security Officer at Ensemble Health Partners: "I want my teams doing the innovative stuff. Not the mundane, repeatable stuff." AI is how you get there. Not just tracking changes across your security controls, but understanding them in the context of your business, pinpointing what actually matters, and deploying fixes before exposure spreads. Posture isn't just assessed. It's maintained. Learn more: reach.security/solutions/tra… #ai #ctem #cybersecurity

Healthcare CTOs are in a race they can't afford to lose. Tyler Theys, CTO at Ensemble Health Partners, put it plainly: AI innovation is moving fast, and keeping patient records secure while trying to keep up is a real challenge. Reach gives his team one less thing to worry about: managing the security controls protecting their perimeter. "Leveraging Reach has been a godsend for us. I don't have to focus on that stuff. I can go focus on what's really driving our business, which is the innovation and AI initiatives." That's the job. Free your team to go build. Learn more: reach.security/solutions/sec… #exposuremanagement #ai #ctem

At Black Hat last year, we sat down with Kevin Mandia to talk about what's coming. His take: offense is going to accelerate with AI. Not slow down. Not plateau. Accelerate. When you've run more red teams than practically anyone on the planet, the pattern is clear. Getting into a victim network is already a race. AI compresses those time frames further. The attack surface isn't changing. Misconfigurations, things that slipped, controls that were on and got turned off. The entry point stays the same. AI just makes the race to exploit it faster. If AI is accelerating offense, we believe it has to be central to defense.  Learn more: f.mtr.cool/piiyaxzzgd

CrowdTour made a stop in New York City last week and Reach was there to partake. Tim Schippmann and Al Puccerella spent the day at JW Marriott Essex House alongside security practitioners, engineers, and leaders from across the industry. Nine to five, booth to breakout to happy hour. Lots of ground covered.  Grateful for the time with the CrowdTour community. Back on the road! #crowdtour #cybersecurity #nyc

World Series Champions vs. NorCal rivals.  Reach joined Tevora and Swimlane last night for an evening at Dodger Stadium with our security friends. You really can't beat events like this. Thanks to Tevora for the hospitality as always. See you at the next one! #cybersecurity #reachsecurity

Reach Security was in San Diego last night at Kodi Connect. Pat Brogan and Cain Nocera spent the evening in roundtable conversations with senior cybersecurity leaders at the Fairmont Grand Del Mar. Heck of a room to have some productive conversations in! Thank you to everyone who joined us and Kodi Connect #cybersecurity #aiincybersecurity

Reach Security is on the ground at the 7th Annual Nashville Official Cybersecurity Summit today. Come find Ben Dean, Ryen Wilkens, and Nelson Lawson. Misconfigured controls and configuration drift are the weak points AI-powered attacks hit first. Reach hardens them faster than attacks can exploit them. AI attackers move fast. Reach moves first. 📍 Renaissance Nashville Hotel | May 13

This morning at Innotech in Austin, Garrett Hamilton is joining Evan from Run Reveal and Dave Endler from Runtime VC for a panel moderated by Dan Holden. The topic: what founders see that CISOs often don't. Founders are pattern-matching across hundreds of security teams every day. CISOs are deep inside one program, making hard calls with limited time and resources. Different vantage points, and sometimes a real disconnect. A room full of cyber practitioners and leaders in Austin this morning to have that conversation openly. #Innotech2026 #CyberSecurity #CTEM

Last week, Garrett Hamilton joined Phil Venables, Dave Gold, and Amit Megiddo for a panel on where security is heading and what it's going to take to get there, part of a CISO MasterClass hosted by David Hahn and Ballistic Ventures in Chicago. The conversation didn't pull punches. Topics ranged from the evolving role of the CISO to what relentless 100% control deployment actually looks like in a world where every organization is a target of opportunity. Grateful to David Hahn and the Ballistic Ventures team for the invite and the room. #cybersecurity #ciso #configurationdrift #reachsecurity

World Password Day was yesterday. But every day is World Password Day when you work in security. Garrett Hamilton shared his perspective in VMBlog's roundup alongside practitioners who live and breathe this stuff. The headline: the problem isn't missing controls. It's the ones you have that aren't consistently enforced. Read here: f.mtr.cool/nxefnbtixu #worldpasswordday #ctem

One of the best events we've been a part of. Tyler White and Bryce Carter, you built something genuinely special here, and it keeps getting better. Thank you Joe Fang for capturing it so well. The Rockies delivered. Three days, unforgettable views, and sore legs for the ride home. Jon Jensen and Scott White, thank you for braving the trails and the altitude on behalf of Reach. #cisoascent #ciso