Finite State Blog

Regulation

From Static to Strategic: Why Living SBOMs Are Key to Compliance Readiness

Nov 17, 2025 4:20:07 PM 2 min read

Product Security

One Shared Language: Why Defining Your Data Model Is the Key to Product Security

Nov 17, 2025 4:11:18 PM 2 min read

Vulnerabilities

The Truth About False Positives in Embedded Security and How to Eliminate Them

Nov 14, 2025 5:08:29 PM 2 min read

Vulnerabilities

Cutting Through the Noise: How Reachability Analysis Transforms Vulnerability Management

Nov 14, 2025 4:41:55 PM 2 min read

Product Security

From Findings to Fixes: How Remediation Testing Bridges the Security Gap

Nov 10, 2025 1:05:29 PM 2 min read

Korea Mandates SBOMs: What It Means for Product Security

Regulation

Korea Joins Global Leaders with Mandatory SBOM Submission: What It Means for Product Security

Nov 7, 2025 5:40:56 PM 3 min read

Regulation

How to Build a CRA-Compliant Vulnerability Disclosure Program That Scales

Nov 4, 2025 12:42:21 PM 3 min read

Regulation

Reachability Analysis: The CRA Game-Changer for Vulnerability Prioritization

Nov 4, 2025 12:30:52 PM 4 min read

Product Security

The Cost of Siloed Security: Why Spreadsheets Are No Longer Enough

Oct 27, 2025 3:40:47 PM 3 min read

Finite State - Unifying SBOM, Vulnerability, and Compliance Workflows

Product Security

One Platform, One Risk Picture: The Key to Unifying SBOM, Vulnerability, and Compliance Workflows

Oct 27, 2025 2:47:14 PM 3 min read

Regulation

The Road to Compliance: First Steps OEMs and Suppliers Should Take Today

Oct 20, 2025 4:37:24 PM 4 min read

Regulation

Legacy Software & CVR Compliance Carveouts Explained

Oct 16, 2025 1:51:09 PM 3 min read

Vulnerabilities

Finite State’s Take on CrowdStrike’s 2025 Global Threat Report

Sep 24, 2025 2:41:32 PM 3 min read

Regulation

Regulations Driving IoT Security Forward

Sep 23, 2025 2:19:15 PM 2 min read

IoT & OT

How Often Should You Pen Test IoT Products?

Sep 23, 2025 1:46:22 PM 2 min read

Read the latest in Product Security thought leadership

From Static to Strategic: Why Living SBOMs Are Key to Compliance Readiness

One Shared Language: Why Defining Your Data Model Is the Key to Product Security

The Truth About False Positives in Embedded Security and How to Eliminate Them

Cutting Through the Noise: How Reachability Analysis Transforms Vulnerability Management

From Findings to Fixes: How Remediation Testing Bridges the Security Gap

Korea Joins Global Leaders with Mandatory SBOM Submission: What It Means for Product Security

How to Build a CRA-Compliant Vulnerability Disclosure Program That Scales

Reachability Analysis: The CRA Game-Changer for Vulnerability Prioritization

The Cost of Siloed Security: Why Spreadsheets Are No Longer Enough

One Platform, One Risk Picture: The Key to Unifying SBOM, Vulnerability, and Compliance Workflows

The Road to Compliance: First Steps OEMs and Suppliers Should Take Today

Legacy Software & CVR Compliance Carveouts Explained

Finite State’s Take on CrowdStrike’s 2025 Global Threat Report

Regulations Driving IoT Security Forward

How Often Should You Pen Test IoT Products?

About Finite State