BLOG

The EU AI Act is no longer a future discussion. It is becoming an operational reality for enterprises across Europe and beyond. Organizations are rapidly adopting AI across cybersecurity, HR, operations, customer service, procurement, analytics, and business workflows. At the same time, the EU AI Act is introducing entirely new governance requirements around how AI systems are classified, monitored, documented, approved, and audited. And after speaking with enterprise clients

The commugen team Cyber compliance is broken. Talk to any CISO or GRC leader and you’ll hear the same story: Compliance itself is clear. Frameworks like ISO 27001, SOC 2, GDPR, and NIS2 are well-defined. The expectations are known. But executing on them day-to-day is a different story. Endless policy writing. Manual control mapping. Vendor questionnaires that take hours-sometimes days-to review. Spreadsheets tracking risks, tasks, and progress. Constant follow-ups just to kee

By: Itai Sassoon Not long ago, cyber risk was something boards discussed once a year. It would appear on the agenda, a report would be presented, and the conversation would move on. Today, that reality is gone. Cybersecurity has become a standing discussion, and in many organizations, an ongoing one. Board members are no longer asking abstract questions about cybersecurity posture. They are asking direct, business-critical questions: Are we exposed right now? Are we compliant

Austria has entered a new era of regulation with the introduction of the Resilienz kritischer Einrichtungen-Gesetz (RKEG). While many organizations are still focused on cybersecurity frameworks like NIS2, RKEG expands the conversation far beyond IT. This is not just another compliance requirement - it’s a shift toward operational resilience at a national level. What Is RKEG? RKEG is Austria’s implementation of the EU’s Critical Entities Resilience Directive (CER). Its goal i

We are proud to celebrate a remarkable achievement: three Commugen clients have won 2025 IT Awards for projects built on the Commugen platform. These awards are a testament to the vision, leadership, and execution capabilities of our clients. Each organization identified a critical operational challenge and turned it into a strategic advantage through innovation and strong cross-team collaboration. 🏆 Israel Tax Authority – Cybersecurity Category Winner The Information Techn

By: The Commugen Team Michal Diamant, a Solution Architect at Commugen, has been instrumental in driving some of Commugen’s recent product enhancements through her direct work and insights gained from collaborating with customers. From uncovering emerging workflow gaps to shaping new features that strengthen daily security operations, Michal brings a field-driven perspective that keeps our roadmap aligned with what customers truly need. Here is our interview with her: Q1. To

By: Oriane Dorai, Solution Architect, Commugen Why Cyber Risk Feels Like a Foreign Language in the Boardroom As a Solution Architect at Commugen, I’ve worked with global CISOs and Risk & Compliance leaders, who all face a similar problem: They speak in terms of risk metrics, while their boards only speak in terms of business impact. In an era defined by AI-driven attacks, ransomware evolution, and multi-framework complexity (NIST, ISO, SOC2, EU DORA) risk communication is a c

By: Anna Schwartz, Senior Solution Architect, Commugen The Unseen Price of AI Risk As a Solution Architect at Commugen, I work hand-in-hand with global CISOs, compliance officers, and IT leaders across industries. One truth stands out: strengthening cyber posture today means embracing AI, not fearing it. Our clients aren’t just looking to manage AI risk; they’re seeking to use AI to enhance resilience, streamline governance, and build smarter, more secure operations. That’s w

By: Itai Sassoon, Commugen CEO The Unseen Price of AI Risk Every CISO I’ve spoken to in the past year says, "Even with the strongest processes and the sharpest teams, it will find its way in.” They’re not talking about ransomware, nation-state hackers, or insider risk. They’re talking about AI, and the risk it creates. Employees are embedding ChatGPT, Gemini, and Copilot into their workflows. While the benefits are visible - faster drafts, quicker responses, streamlined proce