All links and images can be found on CISO Series.

In this episode, Alastair Paterson, CEO and co-founder at Harmonic Security, explains how Harmonic Protect addresses these challenges by securing workforce AI adoption through browser-based visibility, endpoint agents, and MCP gateways. Joining him are Ross Young, co-host at CISO Tradecraft, and Johna Till Johnson, CEO and founder at Nemertes.

• Why are enterprises still struggling with AI governance despite years of motivation to solve it?
• How does Harmonic keep pace with 50,000+ AI products when the landscape changes monthly?
• What's the difference between visibility, coaching, and blocking in AI governance?
• How do you implement AI controls without creating thousands of new alerts for security teams?
• Where does Harmonic fit in the multi-step process of setting policy, monitoring compliance, and enforcement?
• How can CISOs measure the ROI of AI governance tools and benchmark against industry peers?
• What's Harmonic's strategy with secure AI browsers?
• Why should AI browsers be blocked by default in the enterprise?
• What should CISOs prioritize for AI security in 2026?

In this episode, Peter Worth, founder, president, and CEO at Athena Security, explains how their security operations platform addresses these challenges through unified detection and response. Joining him are Jason Taule, CISO at Luminous Health, and Will Gregorian, head of security at Galileo Medical.

• Why are security teams still struggling with alert fatigue despite decades of awareness?
• How does security product fragmentation create blind spots in enterprise defense?
• What's the difference between indicators of compromise and indicators of attack?
• How do AI anomaly detection systems avoid declaring malicious activity "normal"?
• What strategies prevent model drift and adversarial poisoning in AI-based threat detection?
• Why does each client need their own behavioral baseline model?
• How do open source foundations impact enterprise security platform reliability?
• Why are CISOs increasingly held personally accountable for security incidents?

Huge thanks to our episode sponsor, Athena Security Group

Athena Security Group delivers a best in class, AI enabled, Cyber Defense solution (SIEM, EDR, XDR & MDR) on top of Wazuh's award winning open-source SIEM/EDR platform, synthesizing and consolidating cyber security alert management and response across the entire security operations landscape, facilitating intelligent and efficient cybersecurity decision making and response for the modern enterprise, table stakes in the age of AI.

In this episode, Franz Fiorim, field CTO at Trend Micro, explains how Trend Vision One consolidates multiple cloud security tools across AWS, GCP, Azure, Oracle Cloud, and Alibaba Cloud to streamline management, automate controls, and reduce integration overhead. Joining him are Nick Espinosa, host of the Deep Dive Radio Show, and Jason Shockey, CSO at Cenlar FSB.

• Why do organizations still struggle with cloud visibility despite years of cloud adoption?
• How does Trend Micro reconcile security visibility with privacy laws across different jurisdictions?
• What security frameworks does Trend Micro use to measure and define acceptable risk?
• How does cyber risk quantification tie technical security metrics to business impact analysis?
• What questions help determine the financial impact of potential security incidents?
• How long does implementation take for fully cloud versus hybrid environments?
• What safeguards prevent overdependence on a single security vendor?
• Where does Trend Micro draw the line between automated decision-making and human oversight?
• How does Trend Micro protect AI infrastructure and prevent sensitive data exposure in prompts?