Posts by Patrick Spencer

Patrick Spencer, Vice President, Corporate Marketing, Kiteworks

Patrick is charged with building thought leadership and communications programs that increase brand awareness and engagement and propel lead-generation programs, engaging with and mobilizing Kiteworks’ thousands of customers and partners via a multi-touch advocacy strategy, and operationalizing SEO strategies and marketing processes. He has nearly two decades of experience in various senior marketing roles within cybersecurity at Contrast Security, Fortinet, and Symantec. At Contrast Security, he worked with Contrast Labs to institute data science strategies to mine product data used to produce thought leadership reports that were pivotal competitive differentiators and demand-generation vehicles.

Patrick is the recipient of numerous corporate, industry, and media awards, having served as the editor in chief and publisher for various digital publications and initiatives such as CIO Digest at Symantec, The CISO Collective at Fortinet, and the Inside AppSec Podcast at Contrast Security. He holds a doctorate from the University of Durham and two masters and a bachelor’s degree from Abilene Christian University.

59% Exposure Rate: How Legacy MFT Security Creates Risk

by Patrick Spencer October 8, 2025October 8, 2025 | Cybersecurity Risk Management

Your organization likely invests millions in cybersecurity. Firewalls, endpoint protection, security operations centers—all the standard defenses are in place. Compliance teams diligently check their boxes. Yet according to Kiteworks’ inaugural...

Silk Typhoon: The Hidden Threat to Supply Chain Data Security

by Patrick Spencer September 25, 2025 | Cybersecurity Risk Management

The cybersecurity landscape has undergone a seismic shift. No longer do sophisticated threat actors focus solely on breaching network perimeters or exploiting individual vulnerabilities. Instead, they’ve discovered a far more...

What Google Cloud’s 2025 Report Reveals About Building Trust

by Patrick Spencer September 25, 2025 | Cybersecurity Risk Management

The artificial intelligence gold rush has hit a reality checkpoint. While headlines celebrate astronomical productivity gains and transformative business outcomes, a more sophisticated narrative is emerging from the trenches of...

DSPM for Law Firms: Client Confidentiality in the Cloud Era

by Patrick Spencer September 12, 2025 | Cybersecurity Risk Management

Law firms handle attorney-client privileged communications across multiple cloud platforms, creating unprecedented risks to confidentiality. As traditional security perimeters dissolve, Data Security Posture Management (DSPM) becomes essential for protecting privileged...

DSPM ROI Calculator: Industry-Specific Cost Benefits

by Patrick Spencer September 12, 2025September 24, 2025 | Cybersecurity Risk Management

Organizations across industries struggle to justify Data Security Posture Management (DSPM) investments when budget constraints demand clear financial returns. Understanding the quantifiable benefits of DSPM requires analysis beyond initial implementation...

Hidden Enemy Within: Decoding the 2025 Ponemon Institute Report on Insider Threats

by Patrick Spencer September 10, 2025September 24, 2025 | Cybersecurity Risk Management

Executive Summary Main Idea: The Ponemon Institute's 2025 "State of File Security" Report reveals that 45% of data breaches stem from insider threats—your own employees and contractors—costing organizations an average...

PromptLock: AI Ransomware That Writes Its Own Attack Code in Real Time

by Patrick Spencer September 10, 2025September 24, 2025 | Cybersecurity Risk Management

First-documented AI-powered Ransomware On August 27, 2025, ESET malware researchers Anton Cherepanov and Peter Strýček discovered a significant development in ransomware technology. Approximately 18 hours after samples appeared on VirusTotal,...

DSPM vs Traditional Data Security: Closing Critical Data Protection Gaps

by Patrick Spencer September 9, 2025September 24, 2025 | Cybersecurity Risk Management

As organizations grapple with exponential data growth and increasingly complex multi-cloud environments, traditional data security approaches are showing their limitations. With the total amount of data set to reach 181...

46% of Companies Don't Know Their Breach Frequency | 2025 Report

Why 46% of Companies Don’t Know Their Breach Frequency [Kiteworks 2025 Annual Survey Report]

by Patrick Spencer September 3, 2025September 3, 2025 | Cybersecurity Risk Management

New research reveals cascading visibility failures create a perfect storm of vulnerability across enterprises globally. When we launched this research series four years ago, we expected to document steady progress...

Email Security in 2025: Critical Findings Show Your Industry and Location Determine Your Risk

by Patrick Spencer September 3, 2025September 23, 2025 | Cybersecurity Risk Management

Executive Summary Email remains the primary attack vector for cybercriminals, yet most organizations approach email security with outdated assumptions. Kiteworks’ Data Security and Compliance Risk: 2025 Annual Survey Report analyzed...

Beyond the Mystery: How Better Data Controls Could Address ITRC’s 69% Unknown Breach Problem

by Patrick Spencer August 31, 2025 | Cybersecurity Risk Management

The most disturbing finding in the Identity Theft Resource Center’s (ITRC) 2025 reports isn’t the 1,732 data breaches affecting 165,745,452 individuals in just six months. It’s that 69% of these...

How Shadow AI Costs Companies $670K Extra: IBM’s 2025 Breach Report

by Patrick Spencer August 30, 2025 | Cybersecurity Risk Management

The numbers tell a stark story. While IBM’s latest Cost of a Data Breach Report reveals that global breach costs have dropped to $4.44 million—the first decline in five years—U.S....

How 77% of Organizations Are Failing at AI Data Security

by Patrick Spencer August 29, 2025 | Cybersecurity Risk Management

While organizations race to adopt AI at breakneck speed, a staggering 77% lack the foundational security practices needed to protect their most valuable asset: data. This alarming statistic from Accenture’s...

Security and Compliance Blog

Learn security strategies, compare vendors, and implement best practices to prevent breaches and compliance violations from risky third party communications.