Zero Signal

Conor Sherman and Stuart Mitchell dive into the intersection of AI, coding, security, and leadership. They discuss the “September Surge” in hiring, the evolving role of AI in software development, and the critical need for strong security fundamentals as organizations accelerate their adoption of AI technologies. The conversation covers the risks and rewards of AI-driven coding, the responsibilities of security teams, and the importance of leadership and organizational change in navigating this new landscape.Key Topics CoveredThe “back to school” energy in the hiring market and what it means for tech teamsHow AI is shifting from an option to a directive in technology strategyBalancing speed and security: the risks of increased code output from AI assistantsThe fundamentals of security and why they matter more than everThe human element in AI leadership and organizational changeReal-world risks: prompt injection, agentic browsers, and exposed LLM serversAdapting security controls for AI with frameworks like NIST’s COSAISFeatured Links & Resources4x Velocity, 10x Vulnerabilities: AI Coding Assistants Are Shipping More Risks: Read the Apiiro blogSysdig 2025 Cloud-Native Security Report. Read the Sysdig reportCisco: Detecting Exposed LLM Servers (Ollama/Shodan Study). Read the Cisco blogBrave Research: Indirect Prompt Injection in Perplexity Comet: Read the Brave blogNIST CSRC: Control Overlays for Securing AI Systems (COSAIS) – Concept Paper: Read the NIST concept paper

Quick Take (TL;DR)LLMs don’t think—they predict. Keith Hoodlet shows what this means for CISOs facing bias, slopsquatting, MCP risks, and burnout.Guest SpotlightKeith Hoodlet is Engineering Director at Trail of Bits. He previously led at GitHub and Rapid7, co-founded Application Security Weekly, and launched the InfoSec Mentors Project.LinkedIn | Website | NewsletterResources & ReferencesBooksAI Snake OilFour Thousand WeeksArticles / StudiesMarine Corps Times2025 Cloud‐Native Security and Usage ReportThe Register: SlopsquattingTools / FrameworksModel Context ProtocolNVIDIA NeMo GuardrailsMeta Llama GuardCall to ActionIf this episode reshaped how you think about AI security, share it. Connect with your hosts:Conor Sherman — LinkedIn | Website | Sysdig;Stuart Mitchell — LinkedIn | Website.Subscribe to Zero Signal: Apple | Spotify | YouTube | Website

Quick Take (TL;DR)AI is rapidly transforming cybersecurity, demanding new frameworks for trust, leadership, and risk. Olivia Phillips shares why integrating security and ethics from the ground up is essential as organizations re-platform for an AI-driven future. Guest SpotlightOlivia Phillips is Vice President and US Chapter Chair of the Global Council of Responsible AI and founder of Wolf by Technology. With over 20 years in cybersecurity, she began in malware analysis and forensics and is now a leading voice on AI ethics, risk, and leadership. Connect with Olivia on LinkedIn. Call to ActionIf you found this episode useful, please share it and subscribe!Conor Sherman — LinkedIn | Website | SysdigStuart Mitchell — LinkedIn | WebsiteSubscribe: Apple Podcasts | Spotify | YouTube | Website

In this conversation, Ashish Rajan, the founder of TechRiot.io discusses the evolving landscape of AI security, emphasizing the challenges faced by security leaders as AI technologies rapidly advance. He highlights the need for CISOs to balance innovation with security, the importance of trust in AI systems, and the frameworks that can guide organizations in navigating these changes. The discussion also covers the layered security approach necessary for AI applications and the role of human oversight in AI decision-making.TakeawaysAI is transforming the security landscape, creating new risks.CISOs must adapt to rapid changes in technology and security.Trust in AI is built on transparency and reliability.Organizations need to establish frameworks for AI governance.Human oversight is essential in AI decision-making processes.Authorization remains a significant challenge in cybersecurity.The pace of AI adoption is faster than previous technological shifts.Security hygiene is crucial to prevent incidents.AI's integration into business processes requires careful management.Collaboration across departments is vital for effective AI governance.