💡 How do you innovate with AI at enterprise scale without creating new risks? Next week, Scott Roberts, CISO of UiPath, joins us to share how his team applies agentic AI to strengthen UiPath’s own security program. From accelerating vulnerability management workflows to

How do you build trust in a world shaped by AI, fraud, and cyber threats? This Wednesday, October 22, Averlon Co-founder & CEO Sunil Gottumukkala (Sunil) will join Erik Benson, General Partner at Voyager Capital, and Alex Algard (Alex Algard), Founder & CEO of Hiya, at the

AI is transforming how software is built and secured. As development accelerates, security must move just as fast while maintaining trust and accountability. Tomorrow at 11 am PT, UiPath CISO Scott Roberts joins Averlon’s Rajeev Raghunarayan (Rajeev R) to share how agentic AI

👀 Every security team has felt it. The backlog of dependency alerts that never seems to shrink. Each one important, but not all urgent. ⚙️ We’re excited to share our integration with GitHub Dependabot. Averlon helps teams focus on what matters, act on real risk, and accelerate

Join fellow security leaders in Chicago for an evening of open conversation. The Security Leaders Roundtable brings together a small group of CISOs and senior security executives for thoughtful dialogue on modern security priorities and emerging challenges. This Chicago session

🎃 Not all scares come with fangs and capes. Some hide in plain sight. This Halloween, don’t let hidden exposures haunt your environment. Fix what matters, faster. 👻 Wishing you a happy and safe Halloween from all of us at Averlon! #RemediationOps #AgenticAI #Cybersecurity

📘 New research from Enterprise Strategy Group (Enterprise Strategy Group), part of OmdiaCyber, Automating Risk Reduction in the AI Era 400 security leaders share how AI is reshaping exposure management and driving faster remediation across hybrid and cloud environments. Kudos to Tyler

How long does it take UiPath security team to investigate an alert? Hint: you’ll be surprised when you hear it. We sure were. In this 47-second clip, UiPath CISO Scott Roberts shares how his team uses Agentic automation to reshape security operations and accelerate

🎤 Exciting news: Sunil Gottumukkala (Sunil), CEO & Co-Founder of Averlon, will be speaking at Camp IT Cloud Security Strategies – Chicago (Nov 12-13). He’ll share how security teams can turn endless alerts into real action by thinking like the adversary and closing the

Security teams are not short on findings. They are short on time. The latest research from ESG (Enterprise Strategy Group) shows what the most effective teams have in common. 1. They prioritize with real context. 2. They remove manual steps that slow them down. 3. They use agentic AI to

Sunil Gottumukkala (Sunil) will be speaking at ISACA Boise tomorrow on a challenge every security team feels. Too many findings, too few fixes, and exposure windows that grow faster than teams can close them. Anthropic's recent research on AI driven espionage showed how

Sunil Sunil kicked off a strong conversation at CAMP IT last week, sharing his perspective on the widening #ExposureWindow and how teams are working to scale remediation. It echoed what many in the room shared. The gap between findings and fixes keeps growing as

Millions of code and secret findings surface every year in GitHub repos. With more than 23 million leaked secrets detected last year, the remediation gap matters. Averlon now integrates with GitHub Advanced Security to help close that gap. It enriches CodeQL and secret scanning

We are pleased to welcome Brad Cheezum to Averlon as our Principal Security Engineer. Brad brings close to two decades of experience across offensive security, cloud engineering, and large scale operations. His work at Salesforce, Tableau, Brass Lion Entertainment, and Microsoft

Most real security stories never make headlines. They avoid becoming breaches because of something small and unglamorous. An exposed access token caught early. A vulnerability patched in time. A moment when an engineer says “this feels strange” and checks anyway. Security often

▹ How do organizations align risk appetite with the real risk they’re carrying? ▹ How does AI reshape expectations for oversight, assurance, and accountability? ▹ And how can governance models accelerate innovation instead of slowing it? Next week, Averlon is hosting a

React2Shell (CVE-2025-55182) has been widely discussed in the security and engineering communities this week. It is a CVSS 10 vulnerability in React Server Components affecting React 19 and frameworks that depend on those packages, including recent versions of Next.js. Key

What does the “trust gap” actually look like inside an organization? In this short clip, Laura Sawka, founder of Sawka Advisory Group and former SVP of Security GRC at Salesforce, explains how the gap emerges when real cyber risk quietly exceeds what leaders believe they are

Many teams are still working through React2Shell (CVE-2025-55182). Patching React and Next.js to the fixed releases remains the only reliable way to remove this risk. For teams that cannot upgrade right away, there may be a short exposure window. Our engineer Brad Cheezum