BankInfoSecurity.com

Elastic CEO Ash Kulkarni on How AI Transforms Security Data Analysis
Ash Kulkarni, CEO at Elastic, discussed how bug bounty projects and close scrutiny by millions of developers worldwide have made open-source projects more secure than proprietary solutions. He recommends open APIs and interoperability as the future of effective security solutions.

Ex-Interpol Director Craig Jones on How Geopolitics Affects Global Cybercrime
Geopolitical conflicts have affected intergovernmental cooperation. Craig Jones, immediate past director of cybercrime at Interpol, says geopolitical instability has pushed countries to shift their focus toward data sovereignty, scrutinizing data storage, access and regulations.

Phosphorus Cybersecurity's Phillip Wylie on Asset Inventory, Password Hygiene
Organizations inadvertently create cybersecurity gaps by trusting connected devices. Threat actors are shifting tactics to exploit IoT vulnerabilities when traditional attack vectors strengthen, said Phillip Wylie, xIoT security evangelist at Phosphorous Cybersecurity.

National Cybersecurity Alliance's Lisa Plaggemier on Replacing Shrinking Public Funds
Lisa Plaggemier, executive director of the National Cybersecurity Alliance, urges nonprofits to embrace private-sector partnerships and creative outreach to protect vulnerable groups such as senior citizens as federal funding support wanes.

Ex-National Cyber Director Emphasizes a Unified Approach to Cybersecurity
Public-private partnerships are of grave importance to tackle cyberthreats, given their ability to transcend geographical boundaries and affect individuals regardless of location, says Harry Coker, secretary of the Maryland Department of Commerce and former U.S. national cyber director.

Politecnico di Milano's Zanero on Evolving Malware Detection and Hardware Security
Machine learning excels at identifying repetitive patterns and anomalies, but human insight remains vital for understanding the broader context of cyberattacks - especially in cyber-physical ecosystems, said Stefano Zanero, professor at Politecnico di Milano.

SolarWinds CISO Tim Brown's Case Shows Personal, Legal and Health Risks for CISOs
CISOs face tremendous stress in dealing with regulatory scrutiny and legal exposure in the wake of a data breach. SolarWinds CISO Tim Brown shares the personal and professional impact of Securities and Exchange Commission charges against him after the 2020 SolarWinds supply chain attack.

Google Cloud's Hultquist on How State Hackers Exploit Code and Corporate Hiring
John Hultquist, chief analyst at Google Threat Intelligence Group, Google Cloud, discussed how China and North Korea are transforming cyberattacks into organized, factory-like operations. Alongside zero-day exploits, North Korean IT operatives are quietly infiltrating Fortune 500 companies under false identities.

Rain Capital's Chenxi Wang Warns About AI's Emerging Role in Coding
AI can significantly accelerate code generation - helping developers go from idea to implementation in minutes - but AI-generated code is frequently based on insecure or flawed examples found in public code repositories, explains Chenxi Wang, founder and general partner at Rain Capital.

NightDragon CEO Dave DeWalt Sees Cautious Optimism With Agentic AI
Advances in scalable AI and agentic technologies are creating a long-awaited shift in the defender-offender dynamic. With autonomy and agentic capabilities entering production, CISOs may soon deploy 100,000 autonomous agents instead of hiring more staff, said Dave DeWalt, CEO of NightDragon.

Tanium's Dan Streetman on Why Defenders Need to Optimize Tooling
Good AI defense requires real-time visibility across all endpoints, according to Tanium CEO Dan Streetman. He shared how Tanium's "confidence score" framework enables organizations to monitor operational impact on every endpoint when a change is rolled out, helping teams remediate threats at scale.

Trend Micro's Kevin Simzer on How Tariffs and Data Sovereignty Shape Cybersecurity
Organizations are beginning to be more cautious in the wake of the ongoing tariff war in terms of budgeting, although the situation is an opportunity for the cybersecurity industry to improve performance overall, said Kevin Simzer, chief operating officer at Trend Micro.

Accountability Is Key as Enterprises Adopt AI at Scale, Says Saviynt's Jim Routh
AI governance must balance innovation with security, making it vital that organizations adopt flexible, consensus-driven approach to ensure responsible AI deployment while addressing risks such as data exposure and software resilience, said Jim Routh, chief trust officer at Saviynt.

ISC2 CISO Jon France on Why Quantum Resilience Falls Squarely Under the CISO
Quantum computing is at a tipping point, moving from theoretical math to deployable physics, said Jon France, CISO at ISC2. So, security teams need to start addressing the implementation of quantum-safe algorithms now, beginning with the five new safe algorithms released by NIST.

Anthropic's Jason Clinton Discusses the Benefits and Challenges of AI Agents
AI agents will be crucial in the software development life cycle to eliminate bugs, improving the quality of software, which could significantly reduce security vulnerabilities. Although managing AI agents for identity and access controls will be hard, said Jason Clinton, CISO at Anthropic.

FBI's Sanjay Virmani Discusses Recent FBI Takedowns
Developing strong relationships with private sector and international partner organizations is vital for tackling cybercrime. A proactive approach ensures more efficient incident responses, said Sanjay Vermani, the special agent in charge of the FBI in San Francisco

National Security Council's Bulazel to Reset Cyber Norms With Offensive Strategy
National Security Council's Alexei Bulazel told RSA attendees that offensive cyber tools must play a bigger role in U.S. defense. He called for a streamlined regulatory approach, more robust interagency coordination and a narrower role for CISA focused on critical infrastructure and civilian agencies.

DistributedApps.ai's Ken Huang on Agentic AI Risks and Threat Modeling
As AI agents gain autonomy and access dynamic tools, organizations must adopt new threat modeling approaches like mixture threat modeling, a new method that accounts for AI's unpredictability, said Ken Huang, chief AI officer at DistributedApps.ai.

CrowdStrike's Adam Meyers on Cybercriminals Moving From Endpoints to Softer Targets
With EDR making it difficult for cybercriminal to carry out attacks, they are now shifting focus to exploit vulnerabilities in compromised identities and unmanaged devices to move laterally across organizations, said Adam Meyers, senior vice president of counter adversary operations at CrowdStrike.

Menlo Venture's Rama Sekhar on AI Threats and Opportunities
Public attention has been focused on the dangers of large language models such as hallucinations or harmful output, but the most pressing security risks are no longer rooted in the models, but in how they are integrated with real-world tools, said Rama Sekhar, partner at Menlo Ventures.