BLOG

By: The Commugen Team Michal Diamant, a Solution Architect at Commugen, has been instrumental in driving some of Commugen’s recent product enhancements through her direct work and insights gained from collaborating with customers. From uncovering emerging workflow gaps to shaping new features that strengthen daily security operations, Michal brings a field-driven perspective that keeps our roadmap aligned with what customers truly need. Here is our interview with her: Q1. To

By: Oriane Dorai, Solution Architect, Commugen Why Cyber Risk Feels Like a Foreign Language in the Boardroom As a Solution Architect at Commugen, I’ve worked with global CISOs and Risk & Compliance leaders, who all face a similar problem: They speak in terms of risk metrics, while their boards only speak in terms of business impact. In an era defined by AI-driven attacks, ransomware evolution, and multi-framework complexity (NIST, ISO, SOC2, EU DORA) risk communication is a c

By: Anna Schwartz, Senior Solution Architect, Commugen The Unseen Price of AI Risk As a Solution Architect at Commugen, I work hand-in-hand with global CISOs, compliance officers, and IT leaders across industries. One truth stands out: strengthening cyber posture today means embracing AI, not fearing it. Our clients aren’t just looking to manage AI risk; they’re seeking to use AI to enhance resilience, streamline governance, and build smarter, more secure operations. That’s w

By: Itai Sassoon, Commugen CEO The Unseen Price of AI Risk Every CISO I’ve spoken to in the past year says, "Even with the strongest processes and the sharpest teams, it will find its way in.” They’re not talking about ransomware, nation-state hackers, or insider risk. They’re talking about AI, and the risk it creates. Employees are embedding ChatGPT, Gemini, and Copilot into their workflows. While the benefits are visible - faster drafts, quicker responses, streamlined proce

By: Yitav Cohen, Head of Professional Services, Commugen In 2025, generative AI is deeply embedded across departments—from marketing using ChatGPT to developers leveraging Copilot. Shadow AI is no longer a theoretical concern. It’s already shaping daily workflows, often invisibly. For CISOs, Compliance Leaders, and Risk Managers, the challenge isn't whether Shadow AI is present—it’s how to govern it. This article explores the operational side of Shadow AI governance, based on

By: Eldad Levi, Q-GRC Manager, Commugen As Q-GRC Manager, my role blends quality assurance with GRC operations, so I see firsthand how fast Shadow AI tools like ChatGPT or Copilot slip into daily workflows unapproved, unlogged, and invisible to traditional audits. This post shares how we approach Shadow AI discovery, risk scoring, and AI governance in a way that aligns with frameworks like GDPR, NIS2, and the EU AI Act without slowing innovation or relying on outdated spreads

By: Vladimir Tyomin, Commugen’s CTO Generative AI tools like GitHub Copilot, CodeWhisperer, and ChatGPT are transforming software delivery, introducing speed, agility, and innovation. But for CISOs and cyber GRC leaders, they’re also quietly introducing Shadow AI risks that most organizations aren't equipped to manage. These tools operate inside IDEs and browsers, bypassing traditional cybersecurity controls and flying under the radar of most GRC frameworks. It’s not a theore

By the Commugen Team In today’s enterprise environment, AI is revolutionizing productivity, but much of this transformation happens...

The beginning of the new year is an ideal time to reflect on your organization’s cybersecurity resilience. Despite the festive...

The pencils are sharpened, the backpacks are packed, and the summer break is officially over. As students head back to school, it's a...

We’re proud to be named Tier 1 Vendor in GRC management by STKI! This recognition as market leader wouldn't be possible without our...

My keynote at Risk360 summit focused on cybersecurity risk trends in 2024 - and how best to deal with them 🛡️ When you look at some of...

Cybertech Tel Aviv was a blast 🚀 Always a pleasure to meet with the industry's best and brightest, to learn and to exchange ideas! Here...

CR.IL, Israel's first cyber risk conference, wrapped up a phenomenal run, leaving attendees empowered and energized. As the proud...

𝐓𝐡𝐞 𝐄𝐔 𝐀𝐈 𝐀𝐜𝐭 𝐦𝐚𝐝𝐞 𝐢𝐭 𝐜𝐥𝐞𝐚𝐫 - 𝐰𝐞 𝐡𝐚𝐯𝐞 𝐭𝐨 𝐬𝐭𝐚𝐫𝐭 𝐚𝐬𝐬𝐞𝐬𝐬𝐢𝐧𝐠 𝐫𝐢𝐬𝐤𝐬 𝐟𝐨𝐫 𝐀𝐈. Here are 3...

Just returned from my first European tour of 2024. Each country has a different landscape, language and food - but somehow I heard the...

Remember Michael Jordan's legendary words? "𝙏𝙖𝙡𝙚𝙣𝙩 𝙬𝙞𝙣𝙨 𝙜𝙖𝙢𝙚𝙨, 𝙗𝙪𝙩 𝙩𝙚𝙖𝙢𝙬𝙤𝙧𝙠 𝙬𝙞𝙣𝙨...

This will help you focus on what you need to do.

May this be the year when we get rid of tedious manual tasks and switch over to a smart automation platform 🤩 (DM us if you want us to...

💊Compliance on Steroids: From SEC crackdowns to global privacy, the pressure's on. Time to level up your toolkit. 🤖AI: Friend or Foe?...

Now that we finished digesting everything from thanksgiving, we can give our thanks: Thank you. We could have never done this without...

We're thrilled to announce that Commguen has successfully passed the SOC2 type 2 audit and received the certification! This is an...

Don’t be a Scapegoat 🐐 3 things every CISO should do TODAY: The SEC charging SolarWind’s CISO is the latest addition to a growing list...

If there's one thing I've learned this year, it’s the importance of working together. Especially in a year loaded with events and...