Is Your AI Usage a Ticking Time Bomb? In this exclusive Black Hat 2025 interview, Matt Alderman sits down with GitLab CISO Josh Lemos to unpack one of the most pressing questions in tech today: Are executives blindly racing into AI adoption without understanding the risks?
Filmed live at the CyberRisk TV Studio in Las Vegas, this eye-opening conversation dives deep into:
How AI is being rapidly adopted across enterprises — with or without security buy-in
Why AI governance is no longer optional — and how to actually implement it
The truth about agentic AI, automation, and building trust in non-human identities
The role of frameworks like ISO 42001 in building AI transparency and assurance
Real-world examples of how teams are using LLMs in development, documentation & compliance
Whether you're a CISO, developer, or business exec — this discussion will reshape how you think about AI governance, security, and adoption strategy in your org.
Don’t wait until it’s too late to understand the risks.
Segment Resources: The Economics of Software Innovation: $750B+ Opportunity at a Crossroads Report: http://about.gitlab.com/software-innovation-report/
For more information about GitLab and their report, please visit: https://securityweekly.com/gitlabbh
- 0:00 - Intro: Live from Black Hat 2025
- 01:00 - How Executives Are Approaching AI Adoption
- 02:00 - AI Usage in the Enterprise: The 3 Key Patterns
- 03:30 - Real-World AI Test with ChatGPT
- 04:20 - The First Step in AI Governance: Visibility
- 05:10 - Role of Certifications like ISO 42001 in AI Transparency
- 06:00 - Securing Agentic AI: From Code to Guardrails
- 07:30 - Agentic AI & Productivity Gains in Development
- 09:00 - East-West Expansion of Agent Workflows
- 11:30 - Trust, Audit Trails, and Monitoring Non-Human Identities
Josh Lemos is the Chief Information Security Officer at GitLab Inc., where he brings 20 years of experience leading information security teams to his role. Josh has led security teams at numerous high-growth technology companies, including ServiceNow, Cylance, and, most recently, Block (formerly known as Square). Josh’s commitment to securing technologies to make a positive impact in the world has been a common thread throughout his career. He serves as a mentor to aspiring information security professionals and is active in supporting organizations that promote diversity and inclusion in the technology industry. Josh holds a B.S. in Computer and Information Systems Security from the University of San Francisco.
