Avsnitt
-
AI adoption is accelerating inside enterprises, but many organizations are still struggling to define what a mature AI security program actually looks like. Lamont Orange discusses the foundational principles of AI security, the risks hiding in plain sight, and the governance decisions organizations need to make now to reduce exposure before AI risk compounds. The conversation also examines practical controls, organizational accountability, and how CISOs can prioritize action when time and resources are limited.
-
As enterprises move rapidly toward AI and agentic systems, questions around governance, trust, and accountability are becoming increasingly urgent. In this interview, Malcolm Harkins explores what trustworthy AI actually means, what organizations need to achieve it, and how existing cybersecurity and compliance frameworks are struggling to address the realities of AI model security. The discussion also examines the gaps emerging around governance, risk management, and accountability as organizations deploy increasingly autonomous systems.
-
Saknas det avsnitt?
-
Traditional security awareness programs often struggle to create lasting behavioral change inside organizations. In this interview, Missy Bentzen discusses how Docusign approached security awareness and human risk management through its partnership with Hoxhunt. The conversation explores the organizational challenges the program was designed to address, the results that stood out most during implementation, and how leadership and employees responded to a more behavior-focused approach to cybersecurity education.
-
Traditional security models were not designed for environments where AI systems continuously access, process, and learn from enterprise data. In this interview, Todd Moore explains why organizations are shifting toward more data-centric security strategies and what that change means in practice. The conversation explores unified data awareness, the growing importance of crypto-agility, and why organizations need to prepare now for both AI-driven risk and the coming realities of post-quantum security.
-
What happens when the risks you ignore become the ones that hurt you most? In this episode of Cyber Sessions, Foundry’s Joan Goodchild is joined by Colin Zick, partner at Foley Hoag, to unpack two headline-making examples of security blind spots: The Louvre museum heist, including the now-infamous “Louvre” password The rise of AI note-takers inside sensitive corporate meetings Together, they explore how convenience, default settings, and overlooked fundamentals create security liabilities for organizations of every size. Colin explains why these incidents were predictable, preventable, and rooted in leadership decisions, culture gaps, and under-prioritized investments. What You’ll Learn in This Episode: - Why attackers always target your slowest control - How “kicking the can down the road” creates cumulative security failures - The cost of treating security as a “cost center” instead of loss prevention - Why AI note-takers are a litigation and confidentiality minefield How management blind spots—not technology—cause the biggest breaches Practical guidance on MFA adoption, accountability, and security culture How to redesign processes for hybrid/remote work so nothing “falls through the cracks” If you’re a CISO, CSO, security leader, or IT decision maker, this episode delivers actionable lessons on strengthening organizational resilience before the next attack. Like, comment, and subscribe for future episodes of Cyber Sessions, where we break down the technologies, trends, and threats shaping today’s security landscape. Follow CSO for more Business IT and Web Security News!
-
What if you could stop cyberattacks before they happen? In this episode of Cyber Sessions, host Joan Goodchild sits down with Erin Whitmore, former CIA case officer and current Head of The Cipher division at Cynturion Group, to discuss how her team uses intelligence and AI to anticipate and prevent attacks before adversaries strike.
Whitmore reveals how proactive cybersecurity is blending human intuition, artificial intelligence, and offensive tactics to predict threats — while balancing the line between privacy and protection. -
In this episode of Cyber Sessions, Visa CISO Subra Kumaraswamy takes us inside the company’s 24/7 Cyber Fusion Centers, where AI-driven defenses block 90 million attacks and 11 million phishing emails each month. He shares how his team achieves “zero breach, zero disruption” across 200+ countries—and what lessons other security leaders can learn from Visa’s global
-
In this edition of Cyber Sessions, host Joan Goodchild talks with IANS researcher Nick Kakolowski about why midmarket CISOs now earn record-high pay but are still are stretched thin by expanding responsibilities and limited resources.
-
How is cybersecurity education changing — and what skills do tomorrow’s security leaders really need? In this episode of Security Sessions, host Joan Goodchild talks with Kevin Powers, Faculty Director and Lecturer at Boston College Law School, about how cybersecurity has evolved from a technical problem to a core business and legal function.
-
In this debut episode of Cyber Sessions, host Joan Goodchild sits down with Andy Ellis, veteran CSO and member of the CSO Hall of Fame, to learn about his State of the Security Vendor report from the Black Hat show floor. From AI flooding vendor taglines to the real challenges of code security and identity, Ellis shares sharp insights on what’s hype, what matters, and where the CISO role is headed next.