Who Owns Your AI Security Policy? with Chris Cochran
Hacker Valley Studio18 Mai

Who Owns Your AI Security Policy? with Chris Cochran

Right now, someone in your organization is probably feeding sensitive data into an AI system that nobody approved. So when something goes wrong, who's responsible? And more critically, do you even have a policy in place to answer that question?

Ron Eddings sits down with his Hacker Valley co-founder, Chris Cochran, now serving as SANS Field CISO and VP of AI Security, to talk about his freshly released SANS AI Security Maturity Model, a practical framework built for security leaders who need to stop philosophizing and start making decisions.

They cover the three pillars of AI security maturity: utilizing AI for defense, protecting AI itself, and governing it across the organization. Chris then gets real about where most enterprises actually stand (hint: not as far along as they think). Listen for a conversation that meets you wherever you are: skeptic, early adopter, or somewhere in between.

Impactful Moments

00:00 - Introduction

03:00 - Chris Cochran: from Co-Founder to SANS Field CISO

04:20 - Your board is pushing AI before security is ready

06:00 - Tiers of AI uses: summarization to full automation

07:50 - When AI shouldn't make the final call

10:10 - Bite-sized AI: starting small in the enterprise

11:45 - Introducing the SANS AI Security Maturity Model

13:20 - You can no longer afford to be an AI skeptic

16:30 - Three buckets: utilize, protect, and govern AI

18:50 - Fact or Cap: what level of maturity is your enterprise?

21:00 - Retroactive vendor risk and the AI explosion

23:05 - Agentic Identity: workforce, non-human, and beyond

25:00 - What works in the agentic identity space?

27:05 - Blockchain for agent identity: promising or hype?

29:00 - A Message for the next generation of practitioners

31:30 - Ron's closing take: who owns your AI policy?

Links

Connect with Chris Cochran on LinkedIn: ​​https://www.linkedin.com/in/chrishvm/

Download the SANS AI Security Maturity Model: https://www.sans.org/mlp/2026-ai-security-maturity-model-ebook

Check out our upcoming events: https://www.hackervalley.com/livestreams

Join our creative mastermind and stand out as a cybersecurity professional: https://www.patreon.com/hackervalleystudio

Love Hacker Valley Studio? Pick up some swag: https://store.hackervalley.com

Continue the conversation by joining our Discord: https://hackervalley.com/discord

Become a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/

Denne episoden er hentet fra en åpen RSS-feed og er ikke publisert av Podme. Den kan derfor inneholde annonser.

Episoder(424)

Can AI Run Your SOC Better Than You? with Ahmed Achchak

Can AI Run Your SOC Better Than You? with Ahmed Achchak

What if your security team never missed a single alert and actually had time to think strategically? In this episode, Ahmed Achchak, CEO and Co-Founder of Qevlar AI, reveals how autonomous SOCs are re...

13 Nov 202532min

Making Cybersecurity Marketing Creative (and a Little Sexy) with Maria Velasquez

Making Cybersecurity Marketing Creative (and a Little Sexy) with Maria Velasquez

Who said cybersecurity had to be serious? The future of cyber is creative, human, and even a little sexy. In this special 400th episode, Ron Eddings celebrates six incredible years of Hacker Valley S...

6 Nov 202530min

How to See Your Organization Like a Hacker with Chris Dale

How to See Your Organization Like a Hacker with Chris Dale

To defend like a human, you first have to think like a hacker. In this episode, Ron Eddings sits down with Chris Dale, Co-Founder and Chief Hacking Officer at River Security, to explore the human sid...

30 Okt 202525min

Coding by Vibe: The Future of AI-Built Security with Ron Eddings

Coding by Vibe: The Future of AI-Built Security with Ron Eddings

When code meets intuition, innovation gets personal. But what happens when we let AI vibe with our ideas? In this episode, Ron Eddings covers the rise of AI-driven development from Vibe Coding, where...

24 Okt 202520min

Learning How to Learn: Mastering the Cyber Fundamentals with Rich Greene

Learning How to Learn: Mastering the Cyber Fundamentals with Rich Greene

The real edge in cybersecurity isn’t found in new tools, it’s built through timeless fundamentals and a mindset that never stops learning. In this episode, Ron sits down with Rich Greene, Senior Solu...

16 Okt 202525min

How AI Elevates Cyber Hygiene with Jason Rebholz

How AI Elevates Cyber Hygiene with Jason Rebholz

What if protecting your digital twin becomes the new cyber hygiene? In this week's episode, Ron welcomes back cybersecurity leader Jason Rebholz, CEO of Evoke, to discuss how AI is reshaping the fund...

10 Okt 202521min

Securing Software at AI Speed with Varun Badhwar

Securing Software at AI Speed with Varun Badhwar

The biggest security threat isn’t in the cloud, it’s hidden in the code you trust the most. In this episode, Ron sits down with Varun Badhwar, Co-Founder & CEO of Endor Labs, who shares why research ...

2 Okt 202534min

The End of Search and the Rise of AI Browsers and Voices with Ron Eddings

The End of Search and the Rise of AI Browsers and Voices with Ron Eddings

Search engines aren’t dying quietly, they’re being replaced in real time by AI browsers and voice agents. AI isn’t just answering questions anymore; it’s acting for us. In this episode, Ron Eddings e...

25 Sep 202518min

Populært innen Fakta

fastlegen
dine-penger-pengeradet
relasjonspodden-med-dora-thorhallsdottir-kjersti-idem
rss-bisarr-historie
foreldreradet
treningspodden
rss-strid-de-norske-borgerkrigene
jakt-og-fiskepodden
rss-kunsten-a-leve
mikkels-paskenotter
sinnsyn
rss-sunn-okonomi
hverdagspsyken
lederskap-nhhs-podkast-om-ledelse
rss-kull
fryktlos
hagespiren-podcast
dopet
gravid-uke-for-uke
tomprat-med-gunnar-tjomlid