When I joined CalCom this summer, I knew the cybersecurity and infrastructure-security space was at an inflection point. The complexity of modern environments, the acceleration of AI, and the rising pressure on security & IT teams were reshaping how organizations think about risk.
What I didn’t know, until I started speaking directly with customers, CISOs, and IT Infrastructure leaders especially in banking, healthcare, and critical industries was just how deeply the fundamentals were straining under that pressure. Across almost every conversation, I heard a version of the same message. The threats are getting smarter, but the foundations we rely on are not keeping pace.
One moment from a conference this fall has stayed with me.
After a talk, a security leader from a major financial institution pulled me aside and said, “We’re drowning in dashboards. I can see the alerts, but I can’t fix the basics fast enough. Visibility is great but if I can’t easily remediate, I’m still stuck”
The room around us was buzzing with discussions about AI, automation, and next-generation security tools but the pain he described was connected to something far more fundamental: the ability to understand his configurations and knowing they were set correctly.
That is the elephant in the room.
The Fundamentals Are Still Failing
2025 reinforced something the industry doesn’t like to admit: misconfigurations, non-applied policies, and basic configuration weaknesses are still among the most reliable paths attackers use.Analyst reports highlight this trend as well. Analyst reports illustrate a rapidly intensifying threat environment, with average cyberattacks per organization rising from about 818 per week in 2021 to nearly 2,000 per week in 2025, underscoring the scale and persistence of modern attack activity.
Start 2026 With Secure Configurations
At the same time, AI has changed both sides of the equation. Internally, organizations are rapidly adopting AI to improve productivity, often without understanding what data they may be exposing.
Meanwhile, attackers are using AI to operate faster and cheaper. Research from Anthropic demonstrated how AI systems can help automate reconnaissance and exploitation with minimal human direction. The barrier to launching sophisticated attacks has never been lower.
Yet despite these shifts, most organizations still invest the bulk of their resources for device posture management in EDR/XDR as well as vulnerability scanners and patching. These are essential and they save countless incidents from becoming crises. However, the third pillar of Hardening and enforcement of misconfigurations is just as vital but is often not given the same priority. This seems implausible considering the fact that it is one of the key pillars and plays a part in most successful cyberattacks.pi.
Why Device Hardening Still Struggles for Attention
When I talk to business leaders or bankers, I notice their expression change slightly when I mention “device hardening.” It’s not a term that resonates outside of deeply technical teams. Our corner of the cybersecurity world is full of jargon and tends to rely heavily on technical terms like “baseline configurations,” “Active Directory policies,” or “Group Policy Settings” that don’t land with business leaders the way “AI” or “endpoint security” do.
But hardening is where the rubber meets the road. It’s where strategy becomes implementation. It’s where CISOs, sysadmins, and business teams must align because misconfigurations aren’t theoretical. They’re operational. And historically, they’ve been very difficult to fix:
- Every OS and role behaves differently
- Applications are sensitive to configuration changes
- Downtime risk is real
- Expertise is scarce
- Tools are fragmented
- Processes are manual and slow
It’s no wonder misconfigurations remain such a persistent blind spot.
2026: The Year Prevention Must Become Practical
The industry has talked about prevention for years. In 2026, it needs to become achievable.
Hardening is one of the most effective preventive controls we have. For it to work, it must be safe, automated, and continuous. Manual hardening is not a realistic approach for modern environments. Automation is no longer a convenience; it’s a requirement.
This is why I joined CalCom. I believe deeply in our core mission:
to make configuration security predictable, scalable, and safe.
Our platform helps organizations:
- Define secure baselines tailored to their environment
- Test changes without risking uptime
- Detect misconfigurations the moment they appear
- Remediate automatically
- Maintain continuous compliance instead of periodic audits
This is not flashy work but it is necessary innovation. As environments grow more complex, the fundamentals matter more than ever. And the fundamentals start with getting configurations right.
Looking Ahead To The Future of Cybersecurity
We are entering a period where security must become simpler, more reliable, and more grounded in strong preventive practices. Our 2026 roadmap reflects this: deeper automation, broader platform coverage, and capabilities that help organizations stay secure without increasing operational burden. We are fortunate to have committed investors who share our long-term vision and continue to support the expansion of our platform and our team.
As I reflect on my first months here, I want to acknowledge the people who make this work possible. I’ve met customers who are doing heroic work with limited resources. Our partners who are helping their customers achieve the outcomes they are looking for. Finally, I’ve seen our team show the same kind of dedication, from engineering and customer success, to product and marketing, and every function building toward the same vision.
To our customers and to the CalCom team: thank you.
Your resilience, insights, and commitment are what move this industry forward.
Here’s to a more secure, more resilient, and more fundamentally sound 2026.
