The Shared Responsibility Model is the backbone of the information and infrastructure security of modern IT landscapes. It precisely defines which tasks are the responsibility of the provider and which the customer must take on. The current discussion about Anthropic and its specific, four-stage model for AI agents has brought the topic back into focus. But what does shared responsibility mean in practice and what impact does it have on the IT security strategy of organizations? Kerstin G. Stief, editor of our sister publication Computing Deutschland, has all the details:
Shared Responsibility in IT Security: What You Need to Know
More Relevant Posts
-
It’s Day 1 of API Security Week 💥 This week, we’re breaking down what it actually takes to secure modern architectures in a world where AI is rapidly expanding your API footprint. We’re starting with the foundation. If you're building, securing, or scaling AI-powered systems, this guide is for you. It'll help you understand why APIs have become the new security perimeter, and what that means for your security strategy. Get the eBook at the link below, and make sure you follow along all week. We're dropping new tools, tips, and resources every day 👇 https://lnkd.in/dYbSTrTH #APISecurityWeek
-
It's API Security Week, and frankly, we're not talking loudly enough about what API protection looks like in the AI era. APIs are the connective tissue of every AI system being built right now and the attack surface is multiplying fast. Sharing the ebook below with some of the realities worth knowing. If your business is working through this and looking for guidance, reach out.
It’s Day 1 of API Security Week 💥 This week, we’re breaking down what it actually takes to secure modern architectures in a world where AI is rapidly expanding your API footprint. We’re starting with the foundation. If you're building, securing, or scaling AI-powered systems, this guide is for you. It'll help you understand why APIs have become the new security perimeter, and what that means for your security strategy. Get the eBook at the link below, and make sure you follow along all week. We're dropping new tools, tips, and resources every day 👇 https://lnkd.in/dYbSTrTH #APISecurityWeek
-
Cloud Security Alliance announced several CSAI Foundation milestones tied to its 2026 mission of securing the agentic control plane. The announcement includes the STAR for AI Catastrophic Risk Annex, CVE Numbering Authority authorization and stewardship moves for the Autonomous Action Runtime Management specification and Agentic Trust Framework. CSA said the annex rollout is planned from June 2026 through December 2027, with phases covering control language, validation protocols, pilot assessments and a State of Catastrophic AI Risk Controls Report.
-
Understandably, Project Glasswing is ruffling feathers in the industry and Anthropic's Mythos model could upend vulnerability as we know it. However, equally important is to consider the impact of misconfigured systems. We see ample examples in the world of DNS with threat actors exploiting systems with poor DNS hygiene. Given this watershed moment enterprise defenders have to think about the posture of their systems and evaluate how AI could help them identify and remediate these gaps. A new mindset on setting policy for AI systems to intelligently respond, in some cases adjusting posture to protect systems that cannot be automatically patched. Check out my latest blog posted on Infoblox
-
Checkmarx's data point hits hard: scanning activity jumped from billions to trillions of lines of code in a single year. That's not incremental growth. That's a fundamental change in the surface area every development team is accountable for. The shift Jonathan Rende describes isn't about better tools. It's about rethinking what "secure by default" even means when the system you're shipping is larger, more interconnected, and less visible than ever before. Worth a read if you're building anything at scale right now. ⤵️
There’s a lot of focus right now on what AI can discover, especially with advances like Anthropic’s Mythos, but one of the more telling signals is what it’s already producing. Scanning activity has grown from billions to trillions of lines of code in a single year, and that kind of scale fundamentally changes the problem. Risk isn’t something that sits in a single vulnerability anymore. It’s building across code, dependencies, cloud configurations, and now AI-generated components, all interacting in ways that are harder to see and manage. As that system grows, so does the challenge of maintaining visibility, control, and accountability across it. As Jonathan Rende outlines, this isn’t just a shift in tooling; it’s a shift in how application security needs to operate. More in our full blog: https://lnkd.in/ebcKr9eq
-
The Mythos announcement and the formation of Project Glasswing mark a major milestone in AI-driven security, but they are not, and cannot be, a standalone solution. AI models both amplify existing risks and expose new ones, creating challenges that require a broader, more integrated approach. The right question is harder and more uncomfortable: 𝗪𝗵𝗮𝘁 𝗱𝗼𝗲𝘀 𝗶𝘁 𝗺𝗲𝗮𝗻 𝘁𝗵𝗮𝘁 𝗼𝘂𝗿 𝘀𝗼𝗳𝘁𝘄𝗮𝗿𝗲 𝗵𝗮𝘀 𝗯𝗲𝗲𝗻 𝘀𝘂𝗯𝗰𝗹𝗶𝗻𝗶𝗰𝗮𝗹𝗹𝘆 𝗶𝗻𝗳𝗲𝗰𝘁𝗲𝗱 𝗳𝗼𝗿 𝗱𝗲𝗰𝗮𝗱𝗲𝘀, 𝗮𝗻𝗱 𝘄𝗲’𝗿𝗲 𝗳𝗼𝗿𝗰𝗲𝗱 𝘁𝗼 𝗿𝗲𝗮𝗹𝗶𝘇𝗲 𝗶𝘁 𝗼𝗻𝗹𝘆 𝗻𝗼𝘄 𝗯𝗲𝗰𝗮𝘂𝘀𝗲 𝗮 𝗺𝗼𝗱𝗲𝗹 𝗳𝗶𝗻𝗮𝗹𝗹𝘆 𝗵𝗮𝗱 𝘁𝗵𝗲 𝘁𝗿𝗮𝗻𝘀𝗺𝗶𝘀𝘀𝗶𝗼𝗻 𝗿𝗮𝘁𝗲 𝘁𝗼 𝗺𝗮𝗸𝗲 𝗶𝘁 𝘃𝗶𝘀𝗶𝗯𝗹𝗲? Read more on our blog here: https://lnkd.in/ebcKr9eq
There’s a lot of focus right now on what AI can discover, especially with advances like Anthropic’s Mythos, but one of the more telling signals is what it’s already producing. Scanning activity has grown from billions to trillions of lines of code in a single year, and that kind of scale fundamentally changes the problem. Risk isn’t something that sits in a single vulnerability anymore. It’s building across code, dependencies, cloud configurations, and now AI-generated components, all interacting in ways that are harder to see and manage. As that system grows, so does the challenge of maintaining visibility, control, and accountability across it. As Jonathan Rende outlines, this isn’t just a shift in tooling; it’s a shift in how application security needs to operate. More in our full blog: https://lnkd.in/ebcKr9eq
-
A lot changing right now with AI and security. This is a good take on what that actually means in practice ⤵️
There’s a lot of focus right now on what AI can discover, especially with advances like Anthropic’s Mythos, but one of the more telling signals is what it’s already producing. Scanning activity has grown from billions to trillions of lines of code in a single year, and that kind of scale fundamentally changes the problem. Risk isn’t something that sits in a single vulnerability anymore. It’s building across code, dependencies, cloud configurations, and now AI-generated components, all interacting in ways that are harder to see and manage. As that system grows, so does the challenge of maintaining visibility, control, and accountability across it. As Jonathan Rende outlines, this isn’t just a shift in tooling; it’s a shift in how application security needs to operate. More in our full blog: https://lnkd.in/ebcKr9eq
-
Feels like the conversation is starting to shift… not just what AI can find, but how much more teams are actually dealing with now. Worth the read!
There’s a lot of focus right now on what AI can discover, especially with advances like Anthropic’s Mythos, but one of the more telling signals is what it’s already producing. Scanning activity has grown from billions to trillions of lines of code in a single year, and that kind of scale fundamentally changes the problem. Risk isn’t something that sits in a single vulnerability anymore. It’s building across code, dependencies, cloud configurations, and now AI-generated components, all interacting in ways that are harder to see and manage. As that system grows, so does the challenge of maintaining visibility, control, and accountability across it. As Jonathan Rende outlines, this isn’t just a shift in tooling; it’s a shift in how application security needs to operate. More in our full blog: https://lnkd.in/ebcKr9eq
-
A lot changing right now with AI and security. This is a good take on what that actually means in practice ⤵️
There’s a lot of focus right now on what AI can discover, especially with advances like Anthropic’s Mythos, but one of the more telling signals is what it’s already producing. Scanning activity has grown from billions to trillions of lines of code in a single year, and that kind of scale fundamentally changes the problem. Risk isn’t something that sits in a single vulnerability anymore. It’s building across code, dependencies, cloud configurations, and now AI-generated components, all interacting in ways that are harder to see and manage. As that system grows, so does the challenge of maintaining visibility, control, and accountability across it. As Jonathan Rende outlines, this isn’t just a shift in tooling; it’s a shift in how application security needs to operate. More in our full blog: https://lnkd.in/ebcKr9eq
Explore content categories
- Career
- Productivity
- Finance
- Soft Skills & Emotional Intelligence
- Project Management
- Education
- Technology
- Leadership
- Ecommerce
- User Experience
- Recruitment & HR
- Customer Experience
- Real Estate
- Marketing
- Sales
- Retail & Merchandising
- Science
- Supply Chain Management
- Future Of Work
- Consulting
- Writing
- Economics
- Artificial Intelligence
- Employee Experience
- Workplace Trends
- Fundraising
- Networking
- Corporate Social Responsibility
- Negotiation
- Communication
- Engineering
- Hospitality & Tourism
- Business Strategy
- Change Management
- Organizational Culture
- Design
- Innovation
- Event Planning
- Training & Development