CyberWire Daily AI in the GRC: What's real, what's risky and what's next. [Special Edition]
31 snips
Nov 30, 2025 Join Matthew Cassidy, a risk advisory partner at Grant Thornton, Kayne McGladrey, a seasoned CISO from Hyperproof, and Alam Ali, SVP of Product Management at Hyperproof, as they explore AI's transformative role in governance, risk, and compliance. They discuss AI's effectiveness in monitoring, the importance of auditability, and the need for human oversight to mitigate risks. The trio also dives into the market's cautious adoption of AI, emphasizing realistic ROI expectations and the need for documented processes before automation. A practical and insightful conversation awaits!
AI Snips
Chapters
Transcript
Episode notes
AI Works Best As An Assistant
- AI excels as an assistant that centralizes institutional knowledge and aids staff at different experience levels.
- Matthew Cassidy warns to manage expectations and test AI use cases before wide adoption.
Adopt Continuous Control Observability
- Implement continuous observability so controls are monitored proactively rather than found during annual audits.
- Kayne McGladrey says early detection gives leverage with vendors and reduces audit-time panic.
Preserve Core Audit Principles
- Keep audit principles central: ensure AI-sourced evidence is objective, complete, and accurate.
- Matthew Cassidy advises that AI outputs must remain auditable and verifiable by humans.