Blog
The Finite State Blog

Practical insights and articles from our SMEs to help product security teams cut triage noise, fix what matters faster, and deliver audit-ready proof to customers and regulators.

102 results

PLC Device being scanned to reveal inner components and software.
Product Security

Pre-Ship vs. Runtime Security: Building the Full Stack

Why the industry's fixation on the active monitor keeps missing the structural foundation.

Sharon Hagi
Sharon HagiJUNE 3, 2026
The Parallel Rail, Finite State's Model for Continuous Connected Device Security by Sharon Hagi, Chief Security Officer
Product Security

What Is the Parallel Rail? Finite State's Model for Continuous Connected Device Security

AI is becoming physical—and traditional checkpoint security models can’t keep up. The Parallel Rail embeds continuous product security and compliance ...

Sharon Hagi
Sharon HagiMAY 21, 2026
Router being scanned
Product Security

The FCC's Waiver Extension for Routers Is the Right Call for Cybersecurity

Why patch status matters more than where it’s assembled—and what device makers should take from the policy reversal.

Doc McConnell
Doc McConnellMAY 19, 2026
Cybersecurity Risk Assessments & The EU CRA
Product Security

Cybersecurity Risk Assessments & The EU CRA

How to run a CRA-ready cybersecurity risk assessment. The mandatory requirements, a step-by-step process, the tools, and how to keep it defensible acr...

Doc McConnell
Doc McConnell JANUARY 24, 2026
How Expanded Reachability Transforms Risk Management
Product Security

How Smarter Exploitability Analysis Transforms Product Security: Reachability Expansion

Learn how improved Reachability precision, speed, & coverage help product security teams eliminate false positives, accelerate releases, & reduce back...

Zachary O'Dell
Zachary O'DellJANUARY 5, 2026
How to Scale Product Security Across Embedded Systems
Product Security

Scalable Security Services: How Finite State Helps You Stay Ahead of Threats & Regulations

Learn how Finite State helps manufacturers scale product security with penetration testing, compliance readiness, SBOM services & continuous risk moni...

Larry Pesce
Larry PesceNOVEMBER 19, 2025
How Embedded Device Teams Can Get Ahead of Security by Design Mandates
Product Security

Security by Design/Default Isn’t Optional Anymore: How Embedded Device Teams Can Get Ahead

Security by design is now a regulatory expectation. Learn how device teams can meet CRA, Cyber Trust Mark & global requirements with proactive securit...

Janet Bodenbach
Janet BodenbachNOVEMBER 18, 2025
Why Defining Your Data Model Is the Key to Product Security
Product Security

One Shared Language: Why Defining Your Data Model Is the Key to Product Security

A shared data model is the foundation of effective product security. Learn why unified definitions reduce risk, eliminate confusion & enable real auto...

Mike Hatherall
Mike HatherallNOVEMBER 18, 2025
False Positives in Embedded Security and How to Eliminate Them
Product Security

The Truth About False Positives in Embedded Security & How to Eliminate Them

Discover how to reduce false positives in embedded security with reachability analysis, EPSS scoring, and triage, so your team focuses on exploitable ...

Robert Kelley
Robert KelleyNOVEMBER 14, 2025
How Reachability Analysis Transforms Vulnerability Management
Vulnerability ManagementProduct Security

How Reachability Analysis Transforms Vulnerability Management

Cut through vulnerability noise with reachability analysis that prioritizes exploitable risks, reduces false positives, and improves security decision...

Mike Hatherall
Mike HatherallNOVEMBER 10, 2025
How Remediation Testing Bridges the Security Gap
Product SecurityVulnerability Management

From Findings to Fixes: How Remediation Testing Bridges the Security Gap

Learn how remediation testing confirms your security fixes work, prevents regressions, and ensures compliance for connected device manufacturers.

Robert Kelley
Robert KelleyNOVEMBER 10, 2025
The Cost of Siloed Security: Why Spreadsheets Are No Longer Enough
Product Security

The Cost of Siloed Security: Why Spreadsheets Are No Longer Enough

Disconnected tools and spreadsheets slow you down and increase risk. Learn how a unified platform streamlines security, compliance, and audit prep.

Mike Hatherall
Mike HatherallOCTOBER 28, 2025
Finite StateFinite State

Finite State is the Product Security Automation Platform that functions as an autonomous Product Security OS: design → verify → prove, grounded in what you ship.

Platform

Platform Overview
Ground Truth Inventory
Exploitability-Based Prioritization
Design-Time Architecture Security
Automated Evidence-Backed Compliance

Solutions

Device Manufacturers
Automotive
Medical Devices
Energy & Utilities
Government
Industrial

Resources

Blog
Resource Library
Webinars & Videos
Events
Documentation

Company

About Us
CareersHIRING
Press & News
Contact Sales
Media Inquiries
X

© 2026 Finite State. All rights reserved.

Privacy PolicyTerms of UseCustomer Terms and Conditions
Finite StateFinite State
Finite StateFinite State