Ridge Security Technology Inc. @RidgeSecurityAI

AI is moving faster than any policy, framework, or approval process can keep up with, and CISOs are the ones caught in the middle. In this session, Dan Mrvos from Ridge Security sits down with Robert Pace, CISO at Invitation Homes, one of the largest single-family home leasing companies in the United States, to talk about what it actually looks like to govern AI risk in real time, without a rulebook. Robert gets honest about the tensions every CISO is feeling right now: employees adopting AI tools faster than security can assess them, threat actors who don't need a budget cycle, and risk assessment processes that can barely keep up with the models they're evaluating. He also shares his vision for where continuous security testing is headed — and why the human judgment behind it matters more than ever. 👉 Register: linkedin.com/posts/ai-is-mo…

👉 @PhillipWylie sat down with Andy Simpson, founder of Cipher Security, to talk through his firsthand experience as a RidgeBot customer and what continuous security validation actually looks like in the field. Some of what they cover: 🔹 Why annual pen tests are no longer enough 🔹 Vulnerability validation vs. vulnerability identification 🔹 API security risks and real-world attack scenarios 🔹 How agentic AI is changing what's possible in offensive security testing 🔹 What it takes to deliver continuous assurance at MSP scale Andy is not a Ridge Security employee. He's a practitioner who tested the market, chose RidgeBot, and has been running real customer engagements on it for 3 years. That's the perspective you're getting. 🎧 Listen now: YouTube: lnkd.in/garmXiHX Spotify: lnkd.in/gCBcybs6 Apple: lnkd.in/gWupa3Bw #RidgeSecurity #RidgeBot #PenTesting #OffensiveSecurity #APISecurity #CTEM #AdversarialExposureValidation #ContinuousSecurityTesting #ThePhillipWylieShow

⚠️ AI coding agents have changed the speed of creation. Governance hasn't kept up. Ken Huang, with contributions from @linglingsan and Claudionor Coelho Jr., shares a new article that puts a name to a risk landing in more and more CISO conversations: disposable code. Read the full breakdown here 👉 ridgesecurity.ai/blog/disposabl… A product manager spins up a dashboard. A finance analyst wires a model to a live data feed. The code gets abandoned the moment the task is done. But the services it started? Still running. The port is still open. The API key is still active. The dependency already executed. 🚨 The code is disposable. Its side effects are not. This is what makes it a governance problem: disposable code never enters the pipeline. No SAST. No DAST. No SBOM. No change ticket. And yet it may be holding regulated data, exposing a credential, or bridging an untrusted network back into your perimeter. The answer isn't to slow down generation. It's to match validation speed to creation speed — continuous, autonomous, and working on the same clock as the exposure. #CyberSecurity #AIRisk #VibeCoding

Ridge Security is gaining global recognition! Co-Founder and President @linglingsan has been named one of the 5 Best Women Entrepreneurs to Watch in 2026 by @blrmagazine. Lydia has built Ridge Security from the ground up to tackle one of the most critical challenges in cybersecurity today. This recognition reflects her leadership, her vision for autonomous security validation, and the momentum the entire Ridge Security team has built together. 👉 Read the full cover story: businessleadersreview.com/lydia-zhang-en… 🔗Read the press release: businesswire.com/news/home/2026…

Ridge Security Wins 2026 @Intellyx Digital Innovator Award in Autonomous Exposure Validation Leadership! The recognition highlights RidgeBot's approach to autonomous security validation: continuously discovering, exploiting, and validating vulnerabilities across hybrid environments so security teams can prioritize based on real exploitability, not theoretical exposure. 🔗 Full announcement: businesswire.com/news/home/2026… #CyberSecurity #AEV #RidgeBot #AutonomousSecurity

Thank you to the @Intellyx team for this recognition! This reflects the momentum we're seeing as organizations shift toward continuous, autonomous validation. #CyberSecurity #AdversarialExposureValidation #RidgeBot #AutonomousSecurity

A highly critical vulnerability has been disclosed in Drupal core affecting sites running a PostgreSQL database backend. Tracked as CVE-2026-9082, this flaw requires no authentication and allows remote attackers to potentially extract administrator credentials or gain full site control. Threat intelligence tracks already show over 15,000 exploitation attempts globally. In our latest blog post, Dr. Yunfei Ge breaks down the two independent attack vectors and details immediate remediation protocols. RidgeBot users can already automatically detect this vulnerability without manual configuration. 🔗 Read more: lnkd.in/eSpzFqPz #Cybersecurity #ThreatIntel #Drupal #PostgreSQL #ApplicationSecurity

We're proud to see our president and co-founder, @linglingsan, featured by @blrmagazine, sharing her journey and perspective on the future of cybersecurity leadership. 🔗 businessleadersreview.com/lydia-zhang-en… Cybersecurity leadership is about more than defending against threats – it’s about driving innovation, resilience, and business outcomes. #RidgeSecurity #Cybersecurity #Leadership #CyberResilience

We're live at Gartner Security & Risk Management Summit, Day 1. Come find us at Booth 251. Our experts are onsite all day — stop by, ask the hard questions, and let's talk through what's actually going on in your environment and how we can help. #GartnerSEC #RidgeSecurity #Cybersecurity

keyboard_arrow_left Previous keyboard_arrow_right Next

We will be at the @Gartner_inc Security & Risk Management Summit this year! Stop by Booth 251 for a live demo. We’ll show you how RidgeBot cuts through the noise to instantly prioritize threats and deliver clear remediation steps. Want to make sure we connect? Comment below and we'll set aside dedicated time for you. And if you haven't registered yet, save $450 on your ticket. 👉 Use code SEC32EDC Hope to see you there! #GartnerSEC

For years, annual pentests have been treated as a compliance checkbox. Run the test, file the report, move on. But the environments we're defending today look nothing like they did when that model was designed. Cloud infrastructure spins up overnight. APIs multiply. Dependencies shift. Every change is a potential new exposure, and most organizations won't know about it until next year's test. The more important shift happening now isn't just about frequency. It's about how we think about risk. @eSecurityPlanet captured this shift well in a recent piece featuring Ridge Security's @linglingsan. If you're responsible for your organization's security posture, it's worth 4 minutes of your time. 👇 Read the full article esecurityplanet.com/threats/why-an…

🚨 "Anything that connects to the network can be an intrusion." We're going live in an hour! Don't miss it: linkedin.com/posts/what-doe… #CyberSecurity #CISO #AISecurity #Aviation #LinkedInLive

📑The 2026 Data Breach Investigations Report from Verizon reflects a threat environment that is not only growing in volume but shifting in character. Here are the findings that matter most for security teams: ridgesecurity.ai/blog/six-highl… #Cybersecurity #DBIR #VerizonDBIR #Infosec #SecurityTeams

Join Dan Mrvos and Eric Bowerman next Thursday 10 AM PT · LinkedIn Live 🔗 Register: linkedin.com/feed/update/ur… Eric Bowerman, CISO at DFW Airport, will tell you straight: they got off to a rough start with AI adoption. People were bringing tools in, and they had to start backing out of things. Figuring out which LLMs are safe, what data can go where, and how to actually make it useful for the team. #Cybersecurity #CISO #SecurityLeadership #CISOCommunity

The 2026 Verizon DBIR analyzed 22,000+ confirmed breaches across 145 countries. Here are the numbers: 📌 31% — breaches starting with vulnerability exploitation (now #1, up from #2) 📌 13% — breaches via stolen credentials (used to be #1) 📌 43 days — median time to fully patch (up from 32 last year) 📌 26% — share of critical CVEs actually remediated (down from 38%) 📌 48% — breaches involving ransomware 📌 69% — ransomware victims who did NOT pay 📌 60% — increase in third-party involved breaches 📌 40% — higher click rate on mobile phishing vs. email 📌 45% — employees using AI on corporate devices (up from 15% last year) 📌 15 — median number of attack techniques where threat actors used GenAI The theme of this year's report: "keeping a strong foundation in the face of change." AI is accelerating attacks. Patch windows are shrinking. Third-party exposure is exploding. And shadow AI is quietly leaking source code to unauthorized tools. The fix is unglamorous: patch faster, enforce MFA, manage your vendors, govern AI use. Attackers are getting faster. The fundamentals can't wait. 📄 Full report: verizon.com/business/resou… #Cybersecurity #DBIR2026 #InfoSec #DataBreach #CyberRisk #AI