Search a title or topic

Over 20 million podcasts, powered by 

Player FM logo
Artwork

Content provided by Coen or Sander. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Coen or Sander or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://podcastplayer.com/legal.
Player FM - Podcast App
Go offline with the Player FM app!

How to balance cybersecurity and innovation at an acceptable risk

35:13
 
Share
 

Manage episode 483899621 series 3571695
Content provided by Coen or Sander. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Coen or Sander or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://podcastplayer.com/legal.

The security landscape is transforming rapidly as AI becomes embedded throughout enterprise technology stacks. Organizations (and security vendors) need to fundamentally rethink how they approach things like security governance and risk management. That's one of the pieces of advice Jonathan Trull, CISO at Qualys, has during the conversation we had at RSAC 2025 Conference. Listen to this new episode of Techzine Talks to learn more about what he had to say.
Trull draws from his experience overseeing both corporate security and product security engineering when he highlights the gap between AI implementation and security considerations. While organizations race to adopt generative AI tools, few have developed comprehensive frameworks for securing them properly.
According to Trull, many conversations tend to focus on one thing when it comes to securing AI. "Everyone tends to focus on how to prevent sensitive data going into SaaS, AI-enabled products," he says. "But what about when you're building your own LLM models? When do you do data masking? How do you incorporate security in the engineering lifecycle?" These architectural security questions deserve answers too.

At the end of the day, cybersecurity is about creating a balance. A balance between innovation and cybersecurity, and the risks that organizations are willing to take. This conversations gives you some good insights into how to tackle this. Tune in now!

  continue reading

Chapters

1. How to balance cybersecurity and innovation at an acceptable risk (00:00:00)

2. Introduction with Qualys CISO (00:00:44)

3. AI's Evolving Prominence at RSA (00:03:40)

4. Secure-by-Design Protocols (00:07:46)

5. Vulnerability Management Approaches (00:13:42)

6. AI Governance in Organizations (00:19:04)

7. Third-Party Risk and AI (00:24:52)

8. Data Protection in AI Models (00:30:39)

9. Closing Thoughts on AI Capabilities (00:33:44)

41 episodes

Artwork
iconShare
 
Manage episode 483899621 series 3571695
Content provided by Coen or Sander. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Coen or Sander or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://podcastplayer.com/legal.

The security landscape is transforming rapidly as AI becomes embedded throughout enterprise technology stacks. Organizations (and security vendors) need to fundamentally rethink how they approach things like security governance and risk management. That's one of the pieces of advice Jonathan Trull, CISO at Qualys, has during the conversation we had at RSAC 2025 Conference. Listen to this new episode of Techzine Talks to learn more about what he had to say.
Trull draws from his experience overseeing both corporate security and product security engineering when he highlights the gap between AI implementation and security considerations. While organizations race to adopt generative AI tools, few have developed comprehensive frameworks for securing them properly.
According to Trull, many conversations tend to focus on one thing when it comes to securing AI. "Everyone tends to focus on how to prevent sensitive data going into SaaS, AI-enabled products," he says. "But what about when you're building your own LLM models? When do you do data masking? How do you incorporate security in the engineering lifecycle?" These architectural security questions deserve answers too.

At the end of the day, cybersecurity is about creating a balance. A balance between innovation and cybersecurity, and the risks that organizations are willing to take. This conversations gives you some good insights into how to tackle this. Tune in now!

  continue reading

Chapters

1. How to balance cybersecurity and innovation at an acceptable risk (00:00:00)

2. Introduction with Qualys CISO (00:00:44)

3. AI's Evolving Prominence at RSA (00:03:40)

4. Secure-by-Design Protocols (00:07:46)

5. Vulnerability Management Approaches (00:13:42)

6. AI Governance in Organizations (00:19:04)

7. Third-Party Risk and AI (00:24:52)

8. Data Protection in AI Models (00:30:39)

9. Closing Thoughts on AI Capabilities (00:33:44)

41 episodes

All episodes

×
 
Loading …

Welcome to Player FM!

Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.

 

Copyright 2025 | Privacy Policy | Terms of Service | | Copyright
Listen to this show while you explore
Play