In this episode, we’re diving into one of the most critical challenges in artificial intelligence—data security. From supply chain risks and maliciously modified data to data drift that can quietly erode accuracy, protecting information throughout the AI system lifecycle is essential.

We’ll explore insights from global cybersecurity agencies, including best practices and mitigation strategies designed to safeguard the integrity of data that powers AI and machine learning systems. Because in the end, the quality and security of data determine the trustworthiness of AI itself.

So, let’s unpack how securing data can strengthen the future of AI.

In this episode, we explore the NIST Artificial Intelligence Risk Management Framework, also known as the AI RMF 1.0. Released in January 2023, this free resource from NIST is designed to help organizations manage the unique risks of AI while promoting responsible and trustworthy use.

We’ll break down the seven characteristics of trustworthy AI—like safety, security, accountability, fairness, and more—and dive into the four core functions: Govern, Map, Measure, and Manage. These principles guide organizations through the entire AI lifecycle, ensuring AI systems are not only powerful but also reliable and ethical.

So, if you’re looking to strengthen your understanding of AI risk management and build trust in the future of AI, you’re in the right place. Let’s get started with the NIST AI RMF 1.0.

In this episode, we’re diving into how Goldman Sachs, one of the world’s leading investment banks, manages cyber risk. Forget the buzzwords—this is about real-world strategies in operational resilience, business continuity, and disaster recovery. You’ll hear how these practices protect clients, stabilize markets, and keep the firm running through disruption. Our goal? To give you a clear shortcut to understanding Goldman’s multi-layered approach to digital security and operational stability.

In this episode, we unpack NIST IR 8286B-upd1, which guides organizations on aligning cybersecurity risk with enterprise goals. We cover how to prioritize risks, choose effective responses (accept, avoid, transfer, mitigate), and use the Cybersecurity Risk Register (CSRR) to communicate clearly with leadership. We also highlight the value of considering both threats and opportunities to strengthen enterprise resilience.

In this episode, we dive into the work of the CVSS Special Interest Group (SIG), part of the Forum of Incident Response and Security Teams (FIRST). The CVSS SIG is the driving force behind the Common Vulnerability Scoring System—an essential standard used worldwide to measure and prioritize the severity of software vulnerabilities. We explore the group’s efforts in shaping CVSS version 4.0, including key updates, new documentation, a roadmap for the future, and community-driven surveys. Whether you’re a cybersecurity pro or just curious about how digital risk is quantified, this episode sheds light on the evolving mission to strengthen vulnerability management across the industry.