AI isn’t just a productivity tool — it’s a brand-new attack surface.

In this ClearTech Loop episode, Jo Peterson sits down with David Linthicum — cloud pioneer, five-time best-selling author, and leading voice on cloud and AI strategy.

David shares a practical roadmap for CISOs facing the reality of AI adoption:

Weaponize AI for Good: Use generative AI to simulate attacks on your own systems. Find the gaps before adversaries do.

Shift Security Left: Bake privacy and security into the first 20% of your AI/ML pipeline, not the last.

Rethink Incident Response: Static PDFs don’t cut it. Build AI-driven playbooks that adapt to your live environment.

Close the Governance Gap: Break down silos between DevOps and security. Shared responsibility doesn’t mean shared blame.

If you’ve been wondering how to hack yourself before the hackers do, govern AI adoption without slowing innovation, or stop incident response chaos before it starts, this is your episode.

👉 Watch the full conversation + subscribe to our LinkedIn newsletter here: https://www.linkedin.com/newsletters/7346174860760416256/

CISOs wear three hats in 2025: Operator, Strategist, Storyteller.

In this ClearTech Loop episode, Jo Peterson sits down with Mark Lynd — Head of Executive Advisory & Strategy at Netsync, globally ranked AI & Security Thought Leader, and author of Cyber War One Scenario.

Mark shares a practical field guide for CISOs navigating the complexity of AI adoption:

• Operator: Shift SOCs from alert-chasing to question-asking. Measure time-to-decision, not tool count.
• Strategist: Stop reinventing governance. Use paved roads with guardrails (NIST, ISO, vendor frameworks).
• Storyteller: Boards don’t want tool inventories — they want proof you can protect the business. Translate cyber chaos into ROI and resilience.

If you’ve been wondering how to brief the board, govern shadow AI, or actually augment your SOC with AI (without burning out your team), this is your episode.

👉 Watch the full conversation + subscribe to our LinkedIn newsletter here: https://www.linkedin.com/newsletters/7346174860760416256/

Episode Notes

🎧 Listen: [Buzzsprout embed auto-fills]

📺 Watch on YouTube: [insert link]

📰 Subscribe to ClearTech Loop Newsletter: https://www.linkedin.com/newsletters/7346174860760416256/

📘 Mark Lynd’s book Cyber War One Scenario: https://www.amazon.com/Cyber-War-Scenario-Mark-Lynd/dp/B0FH41GRHS

🔗 Resources mentioned:

• NIST AI RMF
• Gartner SOC Efficiency
• PwC Digital Trust Insights 2025

Rules don’t scale. Architecture does. F5’s Lori MacVittie makes the case for putting security policy in the infrastructure—not the app—and for treating AI as its own threat surface. If your program is still chasing strings with rules, you’re already behind.

If your “AI security” strategy is a pile of brittle rules, you’re governing yesterday’s system. In this no-fluff conversation, Lori MacVittie argues for a structural fix: move policy and enforcement into the architecture where they can evolve without redeploys—then govern AI as a distinct threat surface (prompts, context, responses, completions, agents), not just another API.

She also shows how to use LLMs for what humans are bad at: fast pattern discovery. Her real-world example? A packet capture fed to an LLM surfaced a noisy IoT device in minutes—compressing mean-time-to-repair by skipping the rule-writing slog.

Reality check: AI adoption is outrunning AI security. If you’re still reactive, you’re late.

Quick explainer for non-practitioners: Regex (regular expressions) = rule-based string pattern matching; useful for forms, brittle against attackers who mutate text. Lori’s point: shift to semantic signals (meaning/behavior), not just string matches.

In This Episode

• From rules to semantics: why regex won’t save you—and how AI helps detect semantic patterns of abuse.
• Put controls in the architecture: keep secure coding by default, but move policy/enforcement/governance out of the app to avoid security debt and dev drag.
• Govern the AI loop: prompts, context windows, responses, completions, agents—the surface is broader than APIs or the network stack.
• Adoption vs. security: the Road Runner problem—AI is sprinting ahead of the controls.
• Practical win: use LLMs to accelerate discovery in telemetry (e.g., packet captures) and cut MTTR.

Guest Bio

Lori MacVittie is a Distinguished Engineer & Chief Evangelist in F5’s Office of the CTO. She writes and speaks extensively on modern app delivery, AI-driven operations, and security governance.