In this episode, Guru Sethupathy talks with Optro CISO Richard Marcus about how AI is changing the security landscape. They discuss using AI to shift security left in software development, automate GRC tasks, and scale threat detection.

They also cover new AI-driven risks, the urgency of keeping pace with attackers, and how CISOs must lead change management and reskill teams to thrive in the AI era.

In this episode Guru Sethupathy speaks with Karen Meohas, Director of GRC at Nozomi Networks, about how the company approaches AI governance across product and corporate use cases. Karen explains the difference between embedding AI into customer-facing products and using AI to increase internal efficiency, and why each requires distinct risk and governance approaches.

They discuss practical steps Nozomi has taken—EU AI Act alignment, responsible AI disclosures, recurring risk assessments, and an internal AI policy—and how GRC works closely with engineering and legal to maintain transparency and streamline customer conversations.

The conversation closes on accountability, incident response, and the ongoing challenge of managing expanding AI risk surfaces, with Karen emphasizing the opportunity for GRC to guide responsible, trustworthy AI adoption across the organization.

In the inaugural episode of AI Governance Watch, host Guru Sethupathy welcomes Richard Chambers, a global leader in internal audit and risk, to discuss how AI is transforming audit, risk management, and corporate governance.

They explore the rapid emergence of AI-driven risks and opportunities, the need for risk resilience and scenario planning, and the evolving skills auditors must develop—focusing on human judgment, curiosity, and relationship acumen.

The conversation stresses culture and governance as enablers, not roadblocks, and concludes with optimism about human ingenuity while warning that organizations that ignore AI risk becoming irrelevant.