On the 38th episode of Enterprise AI Defenders, host Mike Britton talks with TJ Mann, Global Chief Information Security Officer at Lockton. TJ argues the fastest path to resilience is not chasing every shiny tool; it is treating identity, APIs, and SaaS configuration as the new frontline, because attackers “don’t need to breach your network anymore,” they need one compromised identity, integration, or misconfiguration. He also breaks down how AI shifts email and impersonation risk toward hyper-personalized social engineering, and why Lockton is investing heavily in employee awareness, muscle memory for reporting, and identity-first controls to keep fraud from becoming a business process.

Quick hits from TJ:

On AI-driven impersonation: “We are seeing… hyper personalized social engineering… deepfake voice or face or audio or video or both.”

On what changed in cloud security: “Identity… is the new perimeter.”

On what attackers really need now: “The bad guys don’t need to breach your network anymore. They just need to compromise one identity, one integration or one misconfiguration.”

Recent Book Recommendation: Ikigai by Héctor García and Francesc Miralles

Like what you hear? Leave us a review and subscribe to the show on Apple, Spotify, and YouTube.

Enterprise AI Defenders is a show where security executives explain concrete threat shifts and the defenses that hold up in real environments. Find more great insights from technology leaders and enterprise software experts at https://www.enterprisesoftware.blog/

Enterprise AI Defenders is produced by Abnormal Studios.