u/Haikuka

I've got a research project coming up and I'd like to output some stuff that's useful to me, but also everyone else, so if you've got intelligent questions, I'd really appreciate them.

I'm still pretty new to the cybersec world, but I've noticed that there's a ton of really valuable posts and content around:

• Troubleshooting problems (like how-to stuff)
• Complaining about big "everything has changed, thanks AI" issues
• Big strategy pieces that are, like, 50% useful and 50% hyped up buzzwords

But there are very few first-hand reports of practical strategies beyond the well-worn words of "we're controlling for AI risk."

I'm thinking of asking questions about:

• The gap between what they think/hope they know and what they 100% know about AI usage.
• Real scenarios they experienced in which their measures broke or were super risky, and what they did about it.
• Tradeoffs that have to be made between security and innovation. People can't just stop using apps, but you can't control everything, so how are CISOs actually walking that fine line?
• The tools they're using and have used in the past. Is the old guard still cutting it? How are they solving for perimeter etc.

Full disclosure: I do work for a cybersec company. All snooping will be anonymized. No I will not tell you their passwords. Yes it's probably 12356seven. No, don't try that.