Making AI actually work in the enterprise and more RSAC Conference 2026 interviews – Aamir Lakhani, Camellia Chan, Ely Abramovitch, Jody Brazil, Jim Spignardo – ESW #455
Interview with Jim Spignardo
What does it take to build AI workflows that work? Why do so many fail?
Jim isn’t a typical ESW guest. I think it’s essential for security folks to regularly step outside the security bubble and understand other perspectives and mindsets. That’s what we’re doing today with Jim.
He specializes in building custom AI architecture and workflows for his clients. We discuss the state of AI in the enterprise and why so many of these efforts fail. We’ll discuss the elements of AI success and whether security plays a role in helping AI efforts succeed or contribute to failures.
Segment Resources:
- https://www.proarch.com/
- Cowork vs Cowork - Why Microsoft 365 Copilot Cowork Is the One Built for Enterprise
RSAC Exec Interviews, Part 1
Trends Revealed in Fortinet’s FortiGuard Labs 2026 Global Threat Landscape Report
Fortinet’s Global Director of Threat Intelligence and Adversarial AI Research explores the trends revealed in the latest Global Threat Landscape Report from FortiGuard Labs, including a surge in AI-enabled cybercrime. As AI optimizes and accelerates attack techniques, here’s how cyber defenders should respond.
This segment is sponsored by Fortinet . Visit https://securityweekly.com/fortinetrsac to learn more about them!
X-PHY Delivers Hardware-Enforced Security for the Age of AI Agents
Camellia Chan, CEO and Co-Founder of X-PHY, discusses how Model Context Protocol (MCP) is making it easier for AI agents to plug into enterprise apps and operate with elevated permissions—creating new opportunities for attacks and data exfiltration. She explains how X-PHY’s hardware-enforced monitoring and detection sit beyond the OS trust boundary to enforce immutable limits on what agents can do and stop threats before data is lost, so organizations can adopt agentic AI with confidence.
Security leaders looking to deploy AI agents safely can request a demo or briefing with X-PHY at https://securityweekly.com/xphyrsac.
RSAC Exec Interviews, Part 2
Introducing Legion Investigator: Goal-Oriented AI Investigations
Traditional security playbooks often fail because they cannot capture the fluid, context-dependent reasoning required when a routine investigation hits a non-scripted "judgment point." Legion Investigator addresses this gap by employing goal-oriented AI agents that move beyond rigid scripts to interpret findings and execute complex, multi-step investigations based on your team's unique environment and expertise. By bridging the divide between automated execution and human-level reasoning, the platform ensures that every alert (no matter how unpredictable) is handled with the depth and consistency of a senior analyst.
This segment is sponsored by Legion Security. Visit https://securityweekly.com/legionrsac to learn more about them!
The Missing Layer in Zero Trust: The Security Policy Control Plane
Zero Trust has become the dominant security architecture for hybrid and cloud environments, but many organizations are discovering that deploying enforcement technologies alone does not deliver operational control. Firewalls, cloud security groups, and microsegmentation platforms enforce access decisions, yet the policies behind those controls are often fragmented, difficult to validate, and constantly changing. In this conversation, FireMon CEO Jody Brazil discusses why modern security architectures increasingly require a security policy control plane: a layer that continuously validates how policy is enforced across firewalls, cloud networks, and segmentation platforms. The discussion explores why policy drift occurs in real environments, how enforcement systems become difficult to coordinate at scale, and what organizations must do to ensure Zero Trust policies remain consistent as infrastructure evolves.
This segment is sponsored by FireMon. Visit https://securityweekly.com/firemonrsac to learn more about them!
Aamir Lakhani is a cybersecurity researcher and practitioner with Fortinet and FortiGuard Labs, with over 15 years of experience in the security industry. He is responsible for providing IT security solutions to major commercial and federal enterprise organizations. Lakhani is considered an industry leader in support of detailed architectural engagement and projects on topics related to cyber deference, mobile application threats, malware and advanced persistent threat (APT) research. Previously, Lakhani designed cyber solutions for defense intelligence agencies, and has assisted organizations in defending themselves from active strive-back perpetrated by underground cyber groups. Lakhani’s areas of expertise include FortiGuard, fundamentals of network protection, cyber defense, mobile application threats, malware and APT research.
Camellia Chan is the Co-Founder and CEO of X-PHY Inc., a pioneering cybersecurity company delivering hardware-based protection at the physical layer. She leads the company’s global strategy, innovation, and partnerships, with a focus on AI-embedded solutions that provide real-time, autonomous defense against modern cyber threats. Under her leadership, X-PHY has developed a growing portfolio of patented technologies and launched award-winning solutions like the X-PHY® Cyber Secure SSD.
Ely Abramovitch is the Co-Founder and CEO of Legion Security, the world’s first browser-native AI SOC platform. With a background leading product management for Microsoft Sentinel, he has a proven track record of scaling multi-billion dollar security solutions. Abramovitch’s vision focuses on automating complex threat investigations by having AI learn directly from human analyst workflows. He is also a former jazz pianist whose transition into mathematics and technology has shaped his creative approach to solving enterprise security challenges.
Jody Brazil is the Founder and CEO of FireMon and the original visionary behind the Network Security Policy Management (NSPM) category. Since co-founding FireMon in 2004, Jody has been at the forefront of firewall policy and change management innovation. Following his tenure as founder of the cloud-security platform DisruptOps, he returned to lead FireMon in 2021. Today, he focuses on helping enterprises maintain a unified control plane, automating security policies across hybrid-cloud infrastructures to ensure continuous compliance and operational integrity
Jim Spignardo is a seasoned technology and security leader specializing in cloud strategy, AI enablement, and enterprise cybersecurity. As Director of Cloud Strategy & AI Enablement at ProArch, he helps organizations modernize their infrastructure while embedding security into every layer of digital transformation. With deep expertise across Microsoft ecosystems, cloud architecture, and emerging AI applications, Jim brings a practical, business-first perspective on how enterprises can adopt new technologies securely, scale efficiently, and stay ahead of evolving threats.
Enterprise defenders, you’re expected to stop everything: ransomware, identity-based attacks, supply chain risk, all while managing tool sprawl, alert fatigue, and limited resources.
Meanwhile, attackers are moving faster, getting smarter, and targeting the gaps between your controls.
So where do you focus next?
Join us on April 22 for the FinSec Virtual Cybersecurity Summit. Learn how security leaders are prioritizing detection, strengthening identity defenses, and building resilience across complex enterprise environments.
Cut through the noise, get practical insights, and walk away with strategies you can actually implement.
Security Weekly listeners can register for free at https://securityweekly.com/finsec using the promo code: CSS26-SW
