The Impact of AI on Cybersecurity, According to Experts

As organizations continue to uplevel their AI capabilities, they must also ensure cybersecurity remains top of mind, especially considering AI’s unique ability to be used as both an attack and a defense. To dive into the specific security implications of AI, the To The Point cybersecurity podcast featured an array of guests with deep expertise on the topic. 

If you’re looking to get a pulse on AI-related threats, these three episodes are well worth your time:

Building Resilient Cybersecurity Programs: Insights on AI and Threat Response 

with Kelly McCracken, Salesforce

With AI as a major contributor to more sophisticated and convincing phishing attacks, Kelly McCracken, senior vice president of detection & response at Salesforce, joined the podcast to describe how companies can fight fire with fire by using AI to weed out harmful emails. But the potential cybersecurity benefits of AI don’t end there. 

Drawing from over two decades of experience in cybersecurity and technology, McCracken also highlighted how AI can be used to automate tier-one work in security operations centers (with an eye towards reducing time to detect and respond). By leveraging AI to create new detections, McCracken shares how organizations can reduce their reliance on a team of 24/7 detection personnel and shift the workers who were previously handling such alerts to more complex problems. 

The Future of Work: Flexibility, AI and Cybersecurity 

with Ross Young, Team 8

Our next guest, Ross Young, CISO in residence at Team 8, spoke about how AI security is still in the early stages, with question marks surrounding how to prevent malicious models or the uploading of sensitive corporate intellectual property. Young shared how he works closely with a community of 100 CISOs through Team8, gathering feedback on the specific challenges they face, especially when it comes to AI.

Young also detailed the ever-changing compliance landscape for AI and his creation of the OWASP Threat and Safeguard Matrix (TaSM), which offers a structured approach for addressing AI-related risks by aligning them with the NIST Cybersecurity Framework. Young boasts more than a decade of experience with the CIA, NSA, and the Federal Reserve Board. Additionally, he is currently pursuing a PhD in cybersecurity.

Unpacking Third-Party Risk and AI 

with Alastair Parr, Prevalent

Rounding out our AI-focused trifecta is Alastair Parr, senior VP of global products & services at Prevalent, who discussed how AI can help reduce third-party risk. As Parr explained, managing third-party risk is like finding a needle in a haystack, with vast datasets making it hard to identify vulnerabilities. AI can swiftly analyze this data to detect anomalies and emerging risks, providing organizations with a proactive approach to security.

Additionally, AI can automate routine tasks, such as populating third-party assessments with relevant policies and documents, which reduces assessment fatigue and accelerates decision-making. However, AI’s rise also brings new challenges, particularly with shadow AI tools used outside formal governance structures. This unregulated use can introduce risks like data breaches or biased decision-making. Parr emphasized that companies must actively manage and govern AI deployment, ensuring it adheres to compliance standards and mitigates emerging risks in this rapidly evolving space.

To keep up with the latest cybersecurity trends across the public and private sectors, be sure to follow To The Point. New episodes are published every Tuesday. You can listen to these episodes and more wherever you get your podcasts: