Security Weekly
Full episode and show notes

Building the Cyber Risk Intelligence Layer: From AI Models to Actionable Security – Srinivas Tummalapenta – RSAC26 #5

Security teams are overwhelmed with data but still struggle to answer a fundamental question: what actually matters? In this fireside chat, CyberSaint’s Padraic O’Reilly and IBM’s Srinivas Tummalapenta explore how cybersecurity is evolving from fragmented data collection to a unified cyber risk intelligence layer. They break down how layered AI architectures, combining NLP, GNNs, and LLMs, enable organizations to normalize massive volumes of security data and transform it into real-time, actionable insight. The conversation dives into what it takes to connect telemetry, controls, and threat intelligence into a system that continuously prioritizes risk, supports decision-making, and aligns cy...

This episode is sponsored by
Full Segment Notes

Security teams are overwhelmed with data but still struggle to answer a fundamental question: what actually matters?

In this fireside chat, CyberSaint's Padraic O’Reilly and IBM's Srinivas Tummalapenta explore how cybersecurity is evolving from fragmented data collection to a unified cyber risk intelligence layer. They break down how layered AI architectures, combining NLP, GNNs, and LLMs, enable organizations to normalize massive volumes of security data and transform it into real-time, actionable insight.

The conversation dives into what it takes to connect telemetry, controls, and threat intelligence into a system that continuously prioritizes risk, supports decision-making, and aligns cybersecurity with business outcomes.

For more information about CyberSaint , please visit: https://securityweekly.com/cybersaintrsac.

Key Moments
  • 0:00 - Introduction to Cyber Risk Intelligence Layer
  • 01:45 - Shift from Point-in-Time to Continuous Risk
  • 03:02 - Rapid Innovation with AI & 7-Week Sprint
  • 03:53 - Where Security Architecture Breaks Down
  • 05:57 - AI Consumption Models & Shared Responsibility
  • 06:41 - Combining AI Techniques: Agents, NLP, GNNs, LLMs
  • 09:11 - From Static Risk Assessments to Real-Time Insights
  • 09:55 - Building a Layered AI Security Architecture
  • 10:45 - Breaking Down Silos with Interoperability
  • 11:33 - Normalizing Security Data Across Systems
  • 13:51 - Using Data Efficiently for Risk & Compliance
  • 15:33 - Mapping Telemetry, Controls & Risk Exposure
  • 16:40 - Managing Global Regulations & AI Policies
  • 18:12 - Risk Quantification & Business Context
  • 20:03 - Inside the Cyber Risk Intelligence Layer
  • 22:10 - Beyond SIEM & GRC: A New Security Model
  • 24:06 - Outcome-Driven Security vs Tool Sprawl
  • 25:08 - How Security Operations Will Change
  • 26:59 - Autonomous vs Human-in-the-Loop Security
  • 29:06 - Continuous Monitoring & Autonomous Controls
Guest
Distinguished Engineer & CTO, Master Inventor at IBM Cybersecurity Services

Srinivas is a technical leader and a subject matter expert in Information Security. Srini has degrees in Technology and Business Administration, and has a cumulative experience of 20+ years. As an IBM Distinguished Engineer he is a key technical leader for IBM XForce Protection Platform, Security Services. A believer in secure by design concepts, he has incorporated automation to enable security technologies and services at cloud speed delivered through IBM Cloud Security Services. He works with a team at IBM Security Services to design, deliver, and scale security solutions throughout the client base.

Srini has 5 patents and has various filings in areas of security analytics, threat monitoring and response, and blockchain disclosures under review.

Show More

Stay in the Know, No Smoke and Mirrors – Join Our Newsletter

Get expert insights and technical breakdowns straight to your inbox.
Join Now

You can skip this ad in 5 seconds