<?xml version="1.0" encoding="UTF-8"?><urlset xmlns="http://www.sitemaps.org/schemas/sitemap/0.9" xmlns:news="http://www.google.com/schemas/sitemap-news/0.9" xmlns:xhtml="http://www.w3.org/1999/xhtml" xmlns:image="http://www.google.com/schemas/sitemap-image/1.1" xmlns:video="http://www.google.com/schemas/sitemap-video/1.1"><url><loc>https://www.osec.com/</loc></url><url><loc>https://www.osec.com/company/</loc></url><url><loc>https://www.osec.com/company/about/</loc></url><url><loc>https://www.osec.com/company/bench/</loc></url><url><loc>https://www.osec.com/company/careers/</loc></url><url><loc>https://www.osec.com/company/careers/account-executive/</loc></url><url><loc>https://www.osec.com/company/careers/ai-researcher/</loc></url><url><loc>https://www.osec.com/company/careers/cloud-ai-security-engineer/</loc></url><url><loc>https://www.osec.com/company/careers/delivery-operations/</loc></url><url><loc>https://www.osec.com/company/careers/penetration-tester/</loc></url><url><loc>https://www.osec.com/company/careers/platform-engineer/</loc></url><url><loc>https://www.osec.com/company/careers/red-team-operator/</loc></url><url><loc>https://www.osec.com/company/security/</loc></url><url><loc>https://www.osec.com/company/skillbridge/</loc></url><url><loc>https://www.osec.com/company/where-were-going/</loc></url><url><loc>https://www.osec.com/contact/</loc></url><url><loc>https://www.osec.com/contact/book/</loc></url><url><loc>https://www.osec.com/dont-hire-us/</loc></url><url><loc>https://www.osec.com/incenter/</loc></url><url><loc>https://www.osec.com/incenter/features/</loc></url><url><loc>https://www.osec.com/incenter/humans-in-the-loop/</loc></url><url><loc>https://www.osec.com/incenter/integrations/</loc></url><url><loc>https://www.osec.com/incenter/methodology/</loc></url><url><loc>https://www.osec.com/incenter/ptaas/</loc></url><url><loc>https://www.osec.com/incenter/savings/</loc></url><url><loc>https://www.osec.com/incenter/security/</loc></url><url><loc>https://www.osec.com/incenter/use-cases/</loc></url><url><loc>https://www.osec.com/industries/</loc></url><url><loc>https://www.osec.com/industries/agriculture/</loc></url><url><loc>https://www.osec.com/industries/agriculture/agritech-crop-science/</loc></url><url><loc>https://www.osec.com/industries/agriculture/food-processing/</loc></url><url><loc>https://www.osec.com/industries/agriculture/smart-equipment/</loc></url><url><loc>https://www.osec.com/industries/agriculture/supply-chain/</loc></url><url><loc>https://www.osec.com/industries/federal-government/</loc></url><url><loc>https://www.osec.com/industries/financial-services/</loc></url><url><loc>https://www.osec.com/industries/financial-services/banking/</loc></url><url><loc>https://www.osec.com/industries/financial-services/capital-markets/</loc></url><url><loc>https://www.osec.com/industries/financial-services/credit-unions/</loc></url><url><loc>https://www.osec.com/industries/financial-services/fintech/</loc></url><url><loc>https://www.osec.com/industries/industrial-manufacturing/</loc></url><url><loc>https://www.osec.com/industries/media-entertainment/</loc></url><url><loc>https://www.osec.com/industries/retail/</loc></url><url><loc>https://www.osec.com/industries/state-local-government/</loc></url><url><loc>https://www.osec.com/industries/technology/</loc></url><url><loc>https://www.osec.com/partners/</loc></url><url><loc>https://www.osec.com/partners/become-a-partner/</loc></url><url><loc>https://www.osec.com/partners/deal-registration/</loc></url><url><loc>https://www.osec.com/partners/resources/</loc></url><url><loc>https://www.osec.com/privacy/</loc></url><url><loc>https://www.osec.com/resources/</loc></url><url><loc>https://www.osec.com/resources/blog/</loc></url><url><loc>https://www.osec.com/resources/blog/a-security-strategy-for-the-new-normal/</loc></url><url><loc>https://www.osec.com/resources/blog/a-threat-model-for-space-based-data-centers/</loc></url><url><loc>https://www.osec.com/resources/blog/ai-agents-are-already-hacking-you-your-internal-controls-wont-save-you/</loc></url><url><loc>https://www.osec.com/resources/blog/ai-security-checklist-2025/</loc></url><url><loc>https://www.osec.com/resources/blog/ai-security-tools-use-cases/</loc></url><url><loc>https://www.osec.com/resources/blog/be-better-at-infosec-owasp-london/</loc></url><url><loc>https://www.osec.com/resources/blog/cip-003-11-is-here-heres-how-to-comply-without-breaking-your-ot-environment/</loc></url><url><loc>https://www.osec.com/resources/blog/cisco-breached-data-posted-on-dark-web-forums/</loc></url><url><loc>https://www.osec.com/resources/blog/continuous-exposure-management/</loc></url><url><loc>https://www.osec.com/resources/blog/continuous-testing-zero-days/</loc></url><url><loc>https://www.osec.com/resources/blog/cost-effective-purple-penetration-testing/</loc></url><url><loc>https://www.osec.com/resources/blog/cyber-insurance-friend-or-foe/</loc></url><url><loc>https://www.osec.com/resources/blog/do-better-penetration-tests-for-buyers-and-testers/</loc></url><url><loc>https://www.osec.com/resources/blog/dont-put-all-your-faith-in-cyber-insurance/</loc></url><url><loc>https://www.osec.com/resources/blog/emerging-trends-in-threat-actor-communication-methods/</loc></url><url><loc>https://www.osec.com/resources/blog/enhancing-vulnerability-management-with-incenter-tag-filtering/</loc></url><url><loc>https://www.osec.com/resources/blog/establishing-a-beachhead/</loc></url><url><loc>https://www.osec.com/resources/blog/everyone-can-be-taught-new-tricks-considerations-for-application-pen-tests/</loc></url><url><loc>https://www.osec.com/resources/blog/evolving-attacks-on-healthcare-in-2020-and-beyond/</loc></url><url><loc>https://www.osec.com/resources/blog/executive-order-strengthens-u-s-cybersecurity/</loc></url><url><loc>https://www.osec.com/resources/blog/exploit-for-cve-2023-2825/</loc></url><url><loc>https://www.osec.com/resources/blog/financial-services-threat-report/</loc></url><url><loc>https://www.osec.com/resources/blog/getting-root-a-technical-walkthrough/</loc></url><url><loc>https://www.osec.com/resources/blog/hollywood-has-always-run-on-fragmentation-ai-is-making-that-everyones-problem/</loc></url><url><loc>https://www.osec.com/resources/blog/hostage-negotiation-and-cyber-security/</loc></url><url><loc>https://www.osec.com/resources/blog/i-spy-an-lfi/</loc></url><url><loc>https://www.osec.com/resources/blog/iiot-and-ot-cybersecurity-the-next-battleground-for-cyber-adversaries/</loc></url><url><loc>https://www.osec.com/resources/blog/in-the-race-to-the-cloud-what-could-possibly-go-wrong/</loc></url><url><loc>https://www.osec.com/resources/blog/indicators-of-compromise-ioc-understanding-identifying-and-utilizing-cyber-threat-indicators/</loc></url><url><loc>https://www.osec.com/resources/blog/lessons-learned-from-healthcare-security-assessments/</loc></url><url><loc>https://www.osec.com/resources/blog/lessons-learned-from-working-with-media-companies/</loc></url><url><loc>https://www.osec.com/resources/blog/linkedin-pwnage-why-we-cant-all-be-friends/</loc></url><url><loc>https://www.osec.com/resources/blog/living-off-the-land-an-introduction-to-blending-in-for-red-teams/</loc></url><url><loc>https://www.osec.com/resources/blog/llms-behaving-badly-part-1/</loc></url><url><loc>https://www.osec.com/resources/blog/ma-cybersecurity/</loc></url><url><loc>https://www.osec.com/resources/blog/major-incenter-updates-cover-mobile-api-cloud-and-more/</loc></url><url><loc>https://www.osec.com/resources/blog/mastering-fortios-exploitation-no-direct-debugging-required/</loc></url><url><loc>https://www.osec.com/resources/blog/microsoft-patch-tuesday-analysis-april-2024/</loc></url><url><loc>https://www.osec.com/resources/blog/microsoft-patch-tuesday-analysis-february-2024/</loc></url><url><loc>https://www.osec.com/resources/blog/microsoft-patch-tuesday-analysis-september-2024/</loc></url><url><loc>https://www.osec.com/resources/blog/more-secure-zoom-use/</loc></url><url><loc>https://www.osec.com/resources/blog/navigating-the-sec-cybersecurity-risk-management-rules/</loc></url><url><loc>https://www.osec.com/resources/blog/nobody-gives-a-s-t-about-cybersecurity-a-postcard-from-the-edge-of-the-industry/</loc></url><url><loc>https://www.osec.com/resources/blog/once-you-pop-you-just-cant-stop/</loc></url><url><loc>https://www.osec.com/resources/blog/optional-sql-injection/</loc></url><url><loc>https://www.osec.com/resources/blog/osint-in-threat-hunting/</loc></url><url><loc>https://www.osec.com/resources/blog/owasp-london-suffolk-chapter-meeting/</loc></url><url><loc>https://www.osec.com/resources/blog/patch-tuesday-july/</loc></url><url><loc>https://www.osec.com/resources/blog/penetration-test-or-red-team/</loc></url><url><loc>https://www.osec.com/resources/blog/pip-dreams-and-security-schemes-chaos-in-your-configuration-files/</loc></url><url><loc>https://www.osec.com/resources/blog/pip-dreams-and-security-schemes-part-ii-the-interpreter-in-the-machine/</loc></url><url><loc>https://www.osec.com/resources/blog/protecting-education-cybersecuritys-vital-mission/</loc></url><url><loc>https://www.osec.com/resources/blog/rotten-apples-macos-codesigning-translocation-vulnerability/</loc></url><url><loc>https://www.osec.com/resources/blog/rotten-apples-returns-macos-codesigning-translocation-revisited/</loc></url><url><loc>https://www.osec.com/resources/blog/security-awareness-training-is-mostly-pointless/</loc></url><url><loc>https://www.osec.com/resources/blog/sim-swapping-an-overview/</loc></url><url><loc>https://www.osec.com/resources/blog/stop-worrying-about-the-quantum-apocalypse/</loc></url><url><loc>https://www.osec.com/resources/blog/tales-from-the-red-team-crypt-episode-1/</loc></url><url><loc>https://www.osec.com/resources/blog/test-your-people-not-just-your-filters/</loc></url><url><loc>https://www.osec.com/resources/blog/the_human_touch_in_cybersecurity/</loc></url><url><loc>https://www.osec.com/resources/blog/the-10m-distraction-why-50-000-cves-dont-matter-but-3-attack-paths-do/</loc></url><url><loc>https://www.osec.com/resources/blog/the-day-zero-trust-died/</loc></url><url><loc>https://www.osec.com/resources/blog/the-industry-guide-to-being-a-successful-bad-actor/</loc></url><url><loc>https://www.osec.com/resources/blog/the-move-to-logic-exploitation/</loc></url><url><loc>https://www.osec.com/resources/blog/the-sandworm-in-your-dependencies/</loc></url><url><loc>https://www.osec.com/resources/blog/the-sentry-holding-the-door-open/</loc></url><url><loc>https://www.osec.com/resources/blog/the-validation-layer-for-ai-why-verifying-vulnerabilities-matters-as-much-as-finding-them/</loc></url><url><loc>https://www.osec.com/resources/blog/threat-led-pen-testing-and-dora/</loc></url><url><loc>https://www.osec.com/resources/blog/top-7-cloud-security-trends-every-business-must-know-in-2025/</loc></url><url><loc>https://www.osec.com/resources/blog/unleashing-the-power-of-purple-teaming-with-mitre-attck/</loc></url><url><loc>https://www.osec.com/resources/blog/unmasking-hidden-dangers-the-critical-need-for-threat-hunting/</loc></url><url><loc>https://www.osec.com/resources/blog/wafbypass/</loc></url><url><loc>https://www.osec.com/resources/blog/what-claude-security-gets-right-and-what-it-misses/</loc></url><url><loc>https://www.osec.com/resources/blog/what-is-the-future-of-commercial-drone-security/</loc></url><url><loc>https://www.osec.com/resources/blog/whats-up-doc-an-osec-approach-to-the-looney-tunables-bug-cve-2023-4911/</loc></url><url><loc>https://www.osec.com/resources/blog/when-chatbots-strike/</loc></url><url><loc>https://www.osec.com/resources/blog/why-jlrs-3-5bn-cyber-loss-should-change-how-you-budget-security/</loc></url><url><loc>https://www.osec.com/resources/blog/wrongfully-accused-ai-and-the-murder-of-cyber-security/</loc></url><url><loc>https://www.osec.com/resources/case-studies/</loc></url><url><loc>https://www.osec.com/resources/case-studies/bank-security-transformation/</loc></url><url><loc>https://www.osec.com/resources/case-studies/cox-continuous-testing/</loc></url><url><loc>https://www.osec.com/resources/case-studies/death-by-1000-cuts/</loc></url><url><loc>https://www.osec.com/resources/case-studies/disney-security-program-delivery/</loc></url><url><loc>https://www.osec.com/resources/case-studies/fnz-continuous-application-testing/</loc></url><url><loc>https://www.osec.com/resources/case-studies/preventing-catastrophic-breaches/</loc></url><url><loc>https://www.osec.com/resources/case-studies/purple-team-ics-meat-production/</loc></url><url><loc>https://www.osec.com/resources/events/</loc></url><url><loc>https://www.osec.com/resources/events/black-hat/</loc></url><url><loc>https://www.osec.com/resources/guides/</loc></url><url><loc>https://www.osec.com/resources/guides/from-cspm-noise-to-attack-paths/</loc></url><url><loc>https://www.osec.com/resources/guides/questions-to-ask-a-ctem-vendor/</loc></url><url><loc>https://www.osec.com/resources/guides/ransomware-readiness-checklist/</loc></url><url><loc>https://www.osec.com/resources/guides/scoping-your-first-penetration-test/</loc></url><url><loc>https://www.osec.com/resources/guides/securing-the-ai-you-shipped/</loc></url><url><loc>https://www.osec.com/resources/guides/tabletop-exercise-starter-kit/</loc></url><url><loc>https://www.osec.com/resources/threat-briefs/</loc></url><url><loc>https://www.osec.com/resources/threat-briefs/weekly-situation-report-2-23-26/</loc></url><url><loc>https://www.osec.com/resources/threat-briefs/weekly-situation-report-3-2-26/</loc></url><url><loc>https://www.osec.com/resources/threat-briefs/weekly-situation-report-3-9-26/</loc></url><url><loc>https://www.osec.com/resources/threat-briefs/weekly-situation-report-3-16-26/</loc></url><url><loc>https://www.osec.com/resources/threat-briefs/weekly-situation-report-3-23-26/</loc></url><url><loc>https://www.osec.com/resources/threat-briefs/weekly-situation-report-3-30-26/</loc></url><url><loc>https://www.osec.com/resources/threat-briefs/weekly-situation-report-4-6-26/</loc></url><url><loc>https://www.osec.com/resources/threat-briefs/weekly-situation-report-4-13-26/</loc></url><url><loc>https://www.osec.com/resources/threat-briefs/weekly-situation-report-4-20-26/</loc></url><url><loc>https://www.osec.com/resources/threat-briefs/weekly-situation-report-4-27-26/</loc></url><url><loc>https://www.osec.com/resources/threat-briefs/weekly-situation-report-5-4-26/</loc></url><url><loc>https://www.osec.com/resources/threat-briefs/weekly-situation-report-5-11-26/</loc></url><url><loc>https://www.osec.com/resources/threat-briefs/weekly-situation-report-5-18-26/</loc></url><url><loc>https://www.osec.com/resources/threat-briefs/weekly-situation-report-5-25-26/</loc></url><url><loc>https://www.osec.com/resources/threat-briefs/weekly-situation-report-6-1-26/</loc></url><url><loc>https://www.osec.com/resources/threat-briefs/weekly-situation-report-6-8-26/</loc></url><url><loc>https://www.osec.com/resources/threat-briefs/weekly-situation-report-6-15-26/</loc></url><url><loc>https://www.osec.com/resources/tools/</loc></url><url><loc>https://www.osec.com/resources/tools/scope-builder/</loc></url><url><loc>https://www.osec.com/services/</loc></url><url><loc>https://www.osec.com/services/ai-security/</loc></url><url><loc>https://www.osec.com/services/incident-readiness/</loc></url><url><loc>https://www.osec.com/services/penetration-testing/</loc></url><url><loc>https://www.osec.com/services/penetration-testing/threat-led-penetration-testing/</loc></url><url><loc>https://www.osec.com/services/penetration-testing/what-is-a-penetration-test/</loc></url><url><loc>https://www.osec.com/services/penetration-testing/why-penetration-test/</loc></url><url><loc>https://www.osec.com/services/purple-teaming/</loc></url><url><loc>https://www.osec.com/services/purple-teaming/in-action/</loc></url><url><loc>https://www.osec.com/services/red-teaming/</loc></url><url><loc>https://www.osec.com/services/security-program-review/</loc></url><url><loc>https://www.osec.com/services/special-projects/</loc></url><url><loc>https://www.osec.com/services/threat-hunting/</loc></url><url><loc>https://www.osec.com/sitemap/</loc></url><url><loc>https://www.osec.com/solutions/</loc></url><url><loc>https://www.osec.com/solutions/ai-ml-security/</loc></url><url><loc>https://www.osec.com/solutions/application-api-security/</loc></url><url><loc>https://www.osec.com/solutions/cloud-security/</loc></url><url><loc>https://www.osec.com/solutions/compliance-alignment/</loc></url><url><loc>https://www.osec.com/solutions/continuous-attack-surface/</loc></url><url><loc>https://www.osec.com/solutions/finder/</loc></url><url><loc>https://www.osec.com/solutions/finder/risk/</loc></url><url><loc>https://www.osec.com/solutions/horizon/</loc></url><url><loc>https://www.osec.com/solutions/horizon/agentic-ai/</loc></url><url><loc>https://www.osec.com/solutions/horizon/quantum/</loc></url><url><loc>https://www.osec.com/solutions/horizon/space/</loc></url><url><loc>https://www.osec.com/solutions/outcomes/board-confidence/</loc></url><url><loc>https://www.osec.com/solutions/outcomes/consolidating-security-costs/</loc></url><url><loc>https://www.osec.com/solutions/outcomes/cyber-insurance/</loc></url><url><loc>https://www.osec.com/solutions/outcomes/improving-roi/</loc></url><url><loc>https://www.osec.com/solutions/outcomes/ma-support/</loc></url><url><loc>https://www.osec.com/solutions/ransomware-readiness/</loc></url><url><loc>https://www.osec.com/solutions/spend-nothing/</loc></url><url><loc>https://www.osec.com/solutions/supply-chain-risk/</loc></url><url><loc>https://www.osec.com/solutions/third-party-risk/</loc></url></urlset>