Why Asset Intelligence is Replacing the CMDB & Static Dashboards

Why do CISOs still struggle with asset intelligence in 2026? Despite decades of security tooling, most organizations still have a massive 40% "dark matter" blind spot in their environment and the explosion of ephemeral AI agents is only making it worse.

In this episode, Ashish and Caleb sit down with Joe Diamond, CEO, Axonius to discuss the evolution of the asset space. We explore why traditional CMDBs (which track business processes and IT hardware) fall short for cyber asset attack surface management (CAASM), and why the industry is shifting from static asset inventory to dynamic asset intelligence. Joe spoke about how AI agents whether they run for five minutes or five months must be treated as a distinct asset class, complete with their own access logs and token utilization tracking.

The conversation also goes into the future of enterprise software interfaces. Joe predicts that within three to five years, the traditional dashboard UI will completely disappear, replaced entirely by natural language prompts and AI-driven BI. Finally, we tackle the "Build vs. Buy" dilemma: if AI can integrate tools in five minutes, why do we still need vendors?

Questions asked:

(00:00) Introduction(01:50) Joe Diamond's Background and Journey into Cybersecurity(02:50) Why Asset Management is Still an Unsolved Problem(04:00) The 40% "Dark Matter" Blind Spot in Enterprise Environments(05:30) How Do We Actually Define an Asset?(08:30) CMDB vs. Asset Intelligence: Understanding the Delta(12:30) Defining AI Models and AI Agents as an Asset Class(15:30) Do Ephemeral AI Agents Need to be Tracked?(18:30) The "Time Machine" Feature: Tracking Asset Configuration Drift(20:30) Use Case: Remediating the CrowdStrike Outage Using Asset Intelligence(23:30) Why You Need Asset Intelligence if You Already Have CSPM/CNAPP(31:30) The End of the UI: Why Dashboards Will Be Replaced by AI Prompts(36:30) A Simple 3-Question Framework for AI Asset Management(38:30) Build vs. Buy: Why AI Cannot Operate and Maintain Software

Det här avsnittet är hämtat från ett öppet RSS-flöde och publiceras inte av Podme. Det kan innehålla reklam.

Avsnitt(55)

The AI AuthZ Problem: Why Human Least Privilege Fails for Autonomous Agents

Why are security leaders terrified of connecting AI agents to production data? Because unlike humans, AI agents don't apply judgment, and they operate at machine speed, meaning they can relentlessly h...

4 Juni 47min

Securing AI at the Speed of Engineering | DoorDash | Forward Deployed Security | GRC Engineering

Is your security team moving at the speed of your engineering team? In this special live recording of the AI Security Podcast from San Francisco, Ashish is joined by Nick Reva (Global Director, Engine...

21 Maj 1h 3min

Verification vs. Validation: How Autonomous AI is Changing Cybersecurity

Are autonomous AI agents operating unchecked in your enterprise? With the release of open source frameworks like OpenClaw, deploying an AI agent is now as simple as texting, but it comes with massive,...

13 Maj 1h 10min

The Zero-Click AI Hack: How to Contain the Blast Radius of Autonomous Agents

Is an AI agent's identity a workload or an action? Ashish spoke to Elie Bursztein, Distinguished Research Scientist and co-author of Google SAIF (Secure AI Framework) about how it is neither and that ...

29 Apr 47min

Buy vs. Build AI Security: Why [Box.com](http://Box.com) CISO is Creating their Own Agentic SOC

If your AI solution is just helping humans process the same amount of alerts a little faster, you haven't transformed anything, you've just created a faster hamster wheel.In this episode, Ashish and C...

22 Apr 46min

Anthropic's Project Mythos: Why the "Zero-Day Machine" is Terrifying the Security Industry

In this episode, Ashish and Caleb discuss the internet-breaking preview of Project Mythos, an unreleased AI model from Anthropic that has shown an unprecedented, terrifying ability to reason through c...

18 Apr 1h 3min

Are AI Security Startups Faking It? How to Separate Signal from Noise

With over 70 startups claiming to have built the perfect "AI SOC Analyst" or "AI Threat Hunter," how do you separate the real products from the vaporware? Recorded live at Decibel RSAC Founder Festiva...

15 Apr 47min