Throughout her career, Sandy Dunn has continued to mature and refine her skills. In the early days, she describes her job as a "hostage negotiator", constantly negotiating between the business teams and the security team. But as you mature, so does your approach to security. Now, Sandy talks about simplifying "knowledge management" to make it easy to understand security and becoming a "business listener" to make the right decisions.
Sandy Dunn is a CISO with over two decades of experience spanning manufacturing, healthcare, and high-growth startups. As CISO at SPLX.AI, she leads the security strategy for the company’s automated and continuous AI Security and Red Teaming platform built to defend Conversational and Agentic AI systems at scale.
Sandy is a core contributor to the OWASP GenAI Project and serves as the creator and project lead for both the OWASP GenAI Cybersecurity & Governance Checklist and the OWASP GenAI Threat Defense COMPASS
In addition to her industry leadership, Sandy is an Adjunct Professor at Boise State University, where she teaches cybersecurity courses and mentors the next generation of security professionals. Her expertise spans enterprise security architecture, AI risk governance, red teaming methodologies, and the integration of AI-specific threat modeling into modern security programs.
Don't miss any of your favorite Security Weekly content! Visit https://securityweekly.com/subscribe to subscribe to any of our podcast feeds and have all new episodes downloaded right to your phone! You can also join our mailing list, Discord server, and follow us on social media & our streaming platforms!
We had an absolute blast putting together this year's SW Unlocked virtual event! All presentations are now available on-demand for your viewing pleasure. Please visit https://securityweekly.com/unlocked to register and watch now!
