Sign up to save your podcasts
Or
Share EP265 Beyond Shadow IT: Unsanctioned AI Agents Don't Just Talk, They Act!
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
EP265 Beyond Shadow IT: Unsanctioned AI Agents Don't Just Talk, They Act!
Guest:
- Alastair Paterson, CEO and co-founder @ Harmonic Security
Topics:
- Harmonic Security focuses on securing generative AI in use. Can you walk us through a real, anonymized example of a data leak caused by employee AI usage that your platform has identified?
- AI governance gets thrown around a lot. What does this mean in the context of Shadow AI? How should organizations be thinking about governing AI in light of upcoming AI regulations in the US and in the EU?
- If we generally agree that employees are using AI tools before they are sanctioned, how can organizations control this? Network, API, endpoint?
- Many organizations struggle with the "ban vs. embrace" debate for generative AI. Based on your experience, what's a compelling argument for moving from a blanket ban to a managed, secure adoption model? Can you share a success story where this approach demonstrably reduced risk?
- The term "shadow AI" is often used interchangeably with "shadow IT" (but for AI-powered applications) but you've highlighted that AI is a different beast. What is the single biggest distinction between managing the risk of unsanctioned AI tools versus unsanctioned IT applications?
- Looking forward, where do you see the biggest risks in the evolution of shadow AI? For instance, will the next threat be from highly specialized AI agents trained on proprietary data, or from the rapid proliferation of new, unmonitored open-source models?
- Given the speed of change in this space, what's one piece of advice you'd give to a CISO today who is just beginning to get a handle on their organization's shadow AI problem?
Resources:
- Video version
- Harmonic Security research
- Shadow AI Strikes Back: Enterprise AI Absent Oversight in the Age of Gen AI blog
- Shadow Agents: A New Era of Shadow AI Risk in the Enterprise blog (RSA 2026 presentation coming!)
- Spotlighting 'shadow AI': How to protect against risky AI practices blog
- EP171 GenAI in the Wrong Hands: Unmasking the Threat of Malicious AI and Defending Against the Dark Side (aka "dirty bomb episode")
- A Conversation with Alastair Paterson from Harmonic Security video
View all episodes
By Anton Chuvakin
4.8
3939 ratings
Guest:
- Alastair Paterson, CEO and co-founder @ Harmonic Security
Topics:
- Harmonic Security focuses on securing generative AI in use. Can you walk us through a real, anonymized example of a data leak caused by employee AI usage that your platform has identified?
- AI governance gets thrown around a lot. What does this mean in the context of Shadow AI? How should organizations be thinking about governing AI in light of upcoming AI regulations in the US and in the EU?
- If we generally agree that employees are using AI tools before they are sanctioned, how can organizations control this? Network, API, endpoint?
- Many organizations struggle with the "ban vs. embrace" debate for generative AI. Based on your experience, what's a compelling argument for moving from a blanket ban to a managed, secure adoption model? Can you share a success story where this approach demonstrably reduced risk?
- The term "shadow AI" is often used interchangeably with "shadow IT" (but for AI-powered applications) but you've highlighted that AI is a different beast. What is the single biggest distinction between managing the risk of unsanctioned AI tools versus unsanctioned IT applications?
- Looking forward, where do you see the biggest risks in the evolution of shadow AI? For instance, will the next threat be from highly specialized AI agents trained on proprietary data, or from the rapid proliferation of new, unmonitored open-source models?
- Given the speed of change in this space, what's one piece of advice you'd give to a CISO today who is just beginning to get a handle on their organization's shadow AI problem?
Resources:
- Video version
- Harmonic Security research
- Shadow AI Strikes Back: Enterprise AI Absent Oversight in the Age of Gen AI blog
- Shadow Agents: A New Era of Shadow AI Risk in the Enterprise blog (RSA 2026 presentation coming!)
- Spotlighting 'shadow AI': How to protect against risky AI practices blog
- EP171 GenAI in the Wrong Hands: Unmasking the Threat of Malicious AI and Defending Against the Dark Side (aka "dirty bomb episode")
- A Conversation with Alastair Paterson from Harmonic Security video
More shows like Cloud Security Podcast by Google
View all
WSJ Your Money Briefing
1,722 Listeners
WSJ What’s News
4,424 Listeners
Security Now (Audio)
2,010 Listeners
Risky Business
373 Listeners
CyberWire Daily
1,025 Listeners
NVIDIA AI Podcast
347 Listeners
Darknet Diaries
8,079 Listeners
Cybersecurity Today
177 Listeners
Practical AI
211 Listeners
Cloud Security Podcast
58 Listeners
Cybersecurity Headlines
140 Listeners
Huberman Lab
29,300 Listeners
The AI Daily Brief: Artificial Intelligence News and Analysis
681 Listeners
HBR On Leadership
168 Listeners
AI Security Podcast
9 Listeners