Summary6 min read

Podcast Summary: Data Security Decoded

Episode: The Three-Layer Strategy for Autonomous Agent Governance with Joe Hladik and Amit Malik
Date: April 21, 2026
Host: Caleb Tolan
Guests: Joe Hladik (B) & Amit Malik (C), Rubrik Zero Labs

Episode Overview

This episode delves into the evolving landscape of agentic AI and its risks, focusing on findings from Rubrik Zero Labs’ latest report, “State of the Agent: Understanding Adoption, Risk and Mitigation.” The discussion centers on the rapid rise of autonomous agents (AIs that can take action on data using LLMs), their governance challenges, and practical frameworks to enhance data security. The episode also tackles the real-world fears of CISOs and IT leaders—highlighting concerns about oversight, job security, and viable mitigation strategies.

Key Discussion Points & Insights

1. Why the Urgency? The AI Sprint and Its Cliff

Adoption Pressure: Businesses are eager to implement agentic AI to boost efficiency by automating a vast array of tasks.
- Definition of an Agent: “It’s an identity ... like a bot that you can task ... and then that bot will then have access to LLMs … get an answer … and then execute the task.” (Joe, 02:02)
Risks: Democratization of agent access across all employee levels brings governance dilemmas, especially with authorization and oversight.
- “This is a paradigm shift … even the lowest level employees have the power of agents at their disposal.” (Joe, 03:22)
Weaknesses in Core Security Principles: Existing AI agentic implementations lack maturity in confidentiality, integrity, and availability.
- “Those [CIA triad] aspects are very lacking right now for any sort of agentic AI implementation.” (Joe, 04:11)

2. Governance: The Three-Layer Strategy

(See full framework: 05:44–09:23)

A. Tool Layer

Encompasses the actual tools carrying out tasks (e.g., code writing, database operations).
Mitigations: Strict least-privilege access, sandboxing, firewalls, and careful auditing.

B. Cognitive Layer

The “brain” (LLM) making decisions on which tools to use and how.
Mitigations: Guard against prompt injection, indirect prompt attacks, and constantly audit reasoning processes.

C. Identity Layer

Often overlooked; represents the agent’s identity and what it is allowed to do.
- “There is not much focus on the identity piece. But we believe that it’s very, very ... important.” (Amit, 06:57)
Overall: Each layer poses unique risks and requires separate controls and monitoring for robust governance.
- “Human-in-the-loop should also be there ... this framework should provide an operational model for practitioners … when threat modeling and deploying guardrails for agentic systems.” (Amit, 08:40)

3. Agent Misuse & Shadow AI

Report Findings: 44% fear compromised or shadow agents; only 23% have full oversight.
- “Honestly, I’m surprised that it was 44% and not a little bit higher.” (Host/Caleb, 09:23)
Obstacles: Tools running on unmanaged devices (e.g., laptops) are significantly harder to detect.
- “If you are running something on your laptop, then it’s much difficult to identify those things.” (Amit, 10:57)

4. The Problem of Rolling Back Actions

88% want an “undo” button—almost none have it.
- Telemetry challenges: Monitoring all agent actions is logistically taxing and difficult to scale; context is critical for effective incident response.
- “Tracking what all the agents are doing ... is going to create ... a massive amount of logs... The aggregation’s going to be the challenge.” (Joe, 11:44)
Context and Forensics: Must identify what each agent did, understand its reasoning, and attribute actions correctly.
- “Context is important … especially with nation-state-level attacks.” (Joe, 13:02)

5. CISO Fears: Professional and Personal Ramifications

92% of IT and security leaders fear for their job after an AI-driven breach.
Evolving Risk: Focus shifting from tech complexity to personal liability (i.e., lawsuits post-breach).
- “Historically ... CISOs didn’t have this type of protection and they can get personally sued.” (Joe, 18:23)
There’s movement toward liability protection for CISOs, which may eventually encourage more talent to accept these roles.

6. Moving from Theory to Practical Action

82% say most agentic security advice is too theoretical.
Practical Steps:
1. Threat modeling at each agentic system layer
  - Tool layer: Strict workspace isolation, ephemeral containers, network segregation, input/output validation.
2. Architecture-first thinking: Don’t see agentic AI as a monolith; assess by components and their damage potential.
3. Continuous auditing and human oversight: Re-emphasize human-in-the-loop, especially for critical operations.
  - “Workspace isolation and sandbox ... is very, very essential ...” (Amit, 23:47)

7. Two “Inconvenient Truths” for Leaders

(24:18)

Explosion of identities: With agentic AI, non-human identities proliferate rapidly, making management and tracking extremely difficult.
- “Right now … what’s the ratio from human to non human identity? … It’s become a subjective thing and ... you can thank AI for that.” (Joe, 24:35)
Visibility ≠ Observability:
- It’s not enough to just see the agents (visibility); you must understand what they are doing (observability).
- “You may see all of them, but are you actually observing what they’re doing? … That’s the second truth.” (Joe, 25:55)

Memorable Quotes & Moments

On agentic AI’s power and risk:

“There needs to be some level of command and control from a human perspective ... you want to know what [agents] are doing and ... if they’re doing the right thing.” (Joe, 02:55)
On framework simplicity:

“We are ... providing a very simple framework ... see the agentic AI as a system ... as a three layer approach.” (Amit, 05:56)
On “undo” desires & context:

“We don’t have availability much in terms of telemetry ... without context, you can’t make any informed decisions.” (Joe, 11:44)
CISO liability:

“If you can be personally liable for something, why would you want to sign up for that?” (Joe, 18:43)
On AI doom and existential risk discourse:

“I’m tired of the doomsayers. … There are always things going down and there always will be. But there’s also a lot of positives in the end of it.” (Joe, 29:17)
On human-in-the-loop necessity:

“It’s like organizing a party and no one inviting you to the party you just organized ... you want to go to the party you organized ... if we’re building all these things, you should be very smart in terms of looping in the human, different checkpoints ...” (Joe, 28:58)

Tactical Takeaways for Defenders

(Practical steps highlighted by guest responses around 21:42 & 23:47)

Apply a layered architecture (tool, cognitive, identity) to model threats and enforce tailored controls.
Deploy sandboxing for agent tools; isolate workspaces and ensure ephemeral environments to minimize damage.
Ensure strong identity management for both human and agent entities—monitor what agents can do and audit actions.
Differentiate between merely “seeing” agent actions and actually understanding (or “observing”) context and intent.
Keep humans involved at key decision points, especially where high-value data or critical infrastructure is involved.
Accept that identity and observability challenges are growing—now is the time to build scalable frameworks and telemetry solutions.

Final Takeaways (27:19–29:36)

Amit Malik:

“AI is coming. Deploy it with responsibility. Otherwise, the consequences could be very, very dangerous.”

Joe Hladik:

“Take a deep breath ... reflect on the decisions you’re making. I’m tired of the doomsayers ... There are a lot of positives ... Leverage AI in a positive, beneficial way. … You still need humans in the loop.”

Important Timestamps

02:02 – Joe’s explanation of agentic AI and business urgency
05:44 – Amit on three-layer governance strategy
09:23 – Risks of agent misuse and shadow AI
11:44 – Why rolling back agent actions is so difficult
17:42 – CISO job security, personal liability
21:42 – Practical, actionable steps for defenders
24:18 – The two inconvenient truths: identity explosion and need for observability
27:19 – Final messages from both guests

This episode delivers both a high-level understanding and actionable advice, uniquely focusing on practical ways to address the “agentic paradox” in AI adoption—balancing innovation, governance, and human oversight in the face of rapidly expanding technical and organizational risks.

Loading summary

Transcript37 lines

[00:02]
A
You're listening to the Cyberwire Network, powered by N2K.
[00:10]
B
The ones who haven't faced a major crisis, especially startup companies, for instance, who are just starting companies from the beginning being an agentic rollout, I think we're going to see a lot of vulnerabilities come the same old problem hasn't changed. It comes down to maturity. How mature is your business? There's always going to be organizations that, that, you know, invest in that and then there's always going to be the ones that don't.
[00:45]
A
Hello and welcome to another episode of Data Security Decoded. I'm your host, Caleb Tolan and if this is your first time joining us, welcome to the show. Make sure you hit that subscribe button so you're notified when new episodes go live. And if you are a returning subscriber, thanks for spending some more time with us. Give us a rating drop a below. Let us know what you think about the episode. This is the best way to support the show and it helps me understand what you want to hear more about. Today, Joe Vladic and Amit Malik from Rubrik zero Labs return to expose the agentic paradox found in their latest report, the State of the Agent Understanding Adoption, Risk and Mitigation. We discussed why the majority of security and IT leaders expect AI to outrun the security guardrails and why even more now are starting to fear for their job security. Stay until the end to learn what the heck organizations can do to address the agentic paradox. Let's get into it. Well, thank you again for both of you joining the podcast. It's great to have you both again this time. And so I'm really excited to dive into some of the findings from the report that you recently put out. And what I want to start with is the report notes that 86% of leaders expected AI agents to outpace their security guardrails within the next year. So my first question, Joe, I want to direct this towards you looking at a high level, Are we sprinting towards a cliff? Why is there such a high urgency to adopt this technology across the enterprise?
[02:03]
B
That's a big question. Well, I think the, if we're talking, generally speaking, there's a lot of before we get into security and all that, businesses are seeing a large benefit in what agent capabilities are right. So like if you can get rid of the buzzwords and what, what is an agent? It's, it's an identity that think of like a bot that you can task and then that bot will then have access to LLMs. So it's a bot that can query LLMs, get an answer from it, and then execute the task based on that answer. So just like you using an LLM, you get the response and then you can take action based on what the LLM provides you. An agent is effectively that it's not a replacement for a human. But what it does is it's not necessarily like sentient in acting on its own entirely. It's still an autonomous routine. That's, that's like, more like a bot. But it, what it is, it does use LLMs to, to get more information and then execute a task. So when you think about it like from a business point of view, that's a very powerful tool because what you can do is you can automate literally everything. The problem comes into play when people try to automate everything because you need some level of control, or I should say you need some level of command and control from a human perspective and what you're actually building or executing upon. So if you have a whole hive of agents performing all these different tasks, for one, you want to know what they're doing and then one, if they're doing the right thing. So there needs to be some level of integrity, right? So if we think about the CIA triad that everybody knows, confidential, confidentiality, integrity and availability, those three aspects are very lacking right now for any sort of agentic AI implementation. For one, the confidentiality aspect of it is you have to have the right access privileges one in order for it to do the tasks that you've set out to do. But is it even authorized to do those tasks? And the problem I think is that a lot of employees, even the lowest level employees, have the power of agents at their disposal. And this is a paradigm shift because when you, when any sort of automation in the past was implemented, it usually took leadership and leadership decision making to occur to enable engineering to automate tasks. Right now, everybody in the lowest levels may have access to agents and they will have all this autonomy infrastructure but backing them up and they may not have the authorization or the privileges granted to them to actually perform these tasks. So that governance is a problem. The integrity too as well. Like how do you know what the agents are interacting with? That's a big thing, as well as availability. So availability to me, which we'll talk probably more later, is more akin to what we're calling observability. So one, having visibility into what the agents are doing, but being able to observe all the actions that they're taking, that's another critical gap right now.
[05:27]
A
And A question for you, for the practitioner, how are you able to ensure that guardrails are in place when agents are designed inherently to find the most efficient path around obstacles? What are those policies? What does that governance framework necessarily look like for a business?
[05:44]
C
Yeah, very interesting question, Caleb. I think the things that J talked about and the issues that we have in the agentic AI space, and especially when it comes to the security, because it's a relatively new stuff, most of the traditional things that were there that we used to, the security community used to do might not really be applicable because the inherent nature of the probabilistic nature of the LLMs. Right. So some of the guardrails will not really be there. But one interesting thing that we are talking about in our report is kind of providing a very simple framework to CSO or the practitioner community that when they see the agentic AI as a system, they should kind of see it as a three layer approach. One is like two layer which basically the. The actual hands of the AI agentic system that actually carry out the stuff. Let's say if you have to write a code or you have to read a database or you have to do your task. So these are the tools that actually carry out those things. And then cognitive layer is basically the brain, which is the LLM in nutshell that actually makes these decisions like which tool to invoke and what really needs to be there, what task needs to be there, some reasoning has to be there. And then the. Another very important layer that we are kind of stressing in the report is the identity layer. Because most of the time people are, when looking at the agentic AI system, they are mostly talking about the, you know, the tool and cognitive layer. There is not much focus on the identity piece. But we believe that it's very, very equally important that we kind of consider identity as a part of this framework. And from a guardrail point of view, as I described, if we divide the Agentix system into these three layers, then each of these layers have its own issues and they provide different set of challenges. When it comes to tool layer, it really depends on what type of tool. If it is a database read and write tool, then we have to make sure that it's least privileged. It does not really alter anything in the database or stuff like that. If it is cognitive layer, then we have to make sure that know the cognitive layer related attacks like prompt injection, indirect prompt injections, those are, you know, kind of mitigated. But from a guardrail point of view, these things are evolving right now. Right. So what we recommend in terms of or the proven methods that we have also provided in our report by the means of auditing the mainstream agentic applications like ChatGPT and Gemini though majority of the test bed or the test cases that we have done, they obviously, I mean the major provider have much more strong controls and the guardrails and they are not material risk for them. But if an organization is taking an agent AI application and then they are deploying it, they should make sure that like sandboxing or the LLM guardrails and then the firewalls, those are in place and make sure that the input and output of the each layer basically is basically properly audited. And another aspect of this is that human in the loop should also be there when we are kind of doing these type of things. So from a holistic point of view, I feel that this framework should provide working operational model to practitioners that they can leverage in terms of their threat modeling and deploying the guardrails for the agentic system.
[09:23]
A
Absolutely. And another stat that stood out to me in this report was that a little bit less than half it was 44% of respondents said that their biggest fear was compromised agent misuse or shadow AI. Honestly, I'm surprised that it was 44% and not a little bit higher. But also only 23% of leaders claimed that they had complete oversight of the agents in their environment. So my question for you Amit on this is what does that look like on the ground? How does a defender find an invisible agent that has hijacked and been used as somewhat of an insider threat now?
[09:57]
C
Correct. I think this is a much, much bigger problem and we have seen that with the, with the, with the evidence of OpenCloud or the mold board the people are talking about, that became very popular in terms of the commodity of the agents. Right. So people were like installing it and then there were lots of risk that came out of it, like credential got exposed or supply chain risk came when people tried to deploy the plugins for those. So it is a very big risk in terms of looking from an organization point of view because right now the agent is basically is nothing, just an integration of an LLM and then tools and just you do and carry out your kind of stuff or the task that you do now in terms of the observability, definitely there has to be the solutions that can really kind of identify this type of tooling in the environment. You know, it's easier to identify the tools that are on, let's say the Cloud service providers, because those are kind of more managed in terms of that. Let's say if you do something on, you know, GCP or AWS and stuff like that, but if you are running something on your, your, I would say on your laptop, then it's much difficult to kind of identify those things. Then it comes mostly on like how, based on the technology, how we really, you know, going to identify those things.
[11:19]
A
Wonderful, wonderful. So Joe, I do want to go back to you on this one. So the report outlines that 88% of leaders said that they wish they had an undo button to roll back agentic actions, but only, but really none of them had the capabilities to do that. From a technical perspective, why is this so hard for organizations to roll back whether it's a compromised agent, whether it's an AI agent going rogue. What's the guardrail there?
[11:44]
B
Well, one, I would probably say the problem is context. Back to what I said earlier with confidentiality, integrity and availability. Part of the problem, I think is the second two in this regard, where integrity and availability. One, we don't have availability much in terms of telemetry. So tracking what all the agents are doing for one is going to create an increase the volume of logs immensely. So even if you were to log everything and every agent's doing, especially in a large enterprise, you're going to have a massive amount of logs generated. So for one, there needs to be an approach that somehow you aggregate all of that activity but not reduce the efficacy of what the context is provided in the logs themselves. So for one, that's going to take some work from security professionals and others to figure out like, okay, well, what types of attributes, what types of activities do you want to track and how are you going to forensically trace it back to things like an agent, a specific agent or identity. So things like agent ID timestamps, all the classic logging metadata is going to be necessary. But it's the aggregation that's going to be the challenge in terms of figuring out how to manage the volume. That's the first problem. Because without that you don't have any context. And without context, you can't make any informed decisions on how to act upon an agent, whether the agent is being misused, whether it's acting maliciously, or whatever the case is.
[13:20]
C
Right.
[13:22]
B
In order to understand what it's doing, for one, you need to understand which agent it is that's doing it. And then two, you have to understand the context of how it reached its decision to perform the action. So like, you know, like chat GPT or any AI, you can like open up and see how like the LLM is reasoning through it's, it's sort of thought process, quote unquote, to figure out what response it's going to give you. We almost need access and understanding to that for agents to actually see how they reach the decision that they did. That would be another context point to then say, okay, this, this agent acted unintentionally, but you know, accidentally deleted an entire email database. I'm calling out an actual case that actually happened a few months ago, right where it wasn't, it was an inside threat technically, but it wasn't acting maliciously, it was just doing what it thought was the right thing to do or most efficient thing to do. Context is important in those things type of situations. Especially when we start getting into the realm of more sophisticated nation state level types of attacks, attacks that are going to be leveraging agent agents to do this type of thing. I still don't think espionage is going to be the top use case for agents because subtlety, stealth, all of those things are incredibly important. And if you have a large agent swarm acting autonomously, that might be a little more difficult to keep that sort of stealth in place. But everything else I think is open, whether it's like ransomware, destructive attacks, critical infrastructure attack, anything like that, completely open. Because subtlety stealth is not necessarily key for those types of operations. And we've seen them already sort of starting to occur. So what I had just said with telemetry, that is what's going to inform us on what happened. But how do you stop it while it's happening? That's a different problem as well. So it will build on, on top of the telemetry, you need that context awareness and then you also need to develop new detection measures that use that sort of telemetry to then inform you that an attack is happening. I think we're going to see an evolution of that as well, where it'll be a combination of maybe both, where you'll have AIs generating signatures based on artifacts that we're recognizing and then also recognizing new behaviors that are tied to specific types of agents or threat actors or shadow AIs or whatever we want to call them. And I just see this as an escalation. It's much harder for the defender to identify every hole in the environment and then fill those holes to prevent the attacker from exploiting it. So the task, that's why the task is monumental, is defenders just have more to deal with. And the it's a more complicated processed to get an AI to solve that for you. Even though AIs make it a lot simpler. A lot of the underground context that I just talked about needs to exist for the AI to act in a way that like, okay, now I understand that we need to defend this specific thing, identity space or different things like the network for instance. I'm certain humans are not going to be able to defend it in the same way that an AI would. So I think that's kind of where we're going to get at is we're going to see more AIs performing detection, engineering, type things and quickly rolling out new signatures, new anomalies, new types of things, more in one package rather than being separate.
[16:57]
A
Right, right. Very interesting insights there. But yeah, I do want to shift gears a little bit and talk about another element in the report. And Joe, I'll direct this one to you, but it was 92% of it and security leaders feared for their job security if their company suffers from an agentic driven breach. Now I know Rubrik zero Labs has tracked this idea of job security for quite a while now and I want to kind of note like the change over time. So is the real fear driven by the complexity of AI or is it really more this increasing legal and personal ramifications for CISOs post breach? And how has this fear index changed over, over the past several years as Rubrik Zier Labs has tracked it?
[17:42]
B
I, I don't think it's actually changed. I think it's actually just evolved. I think some CISOs and especially the ones I've talked to, there's a lot of new things that are going to be in place to protect CISOs as well, especially when it comes to insurance policies. I've seen a lot of opportunities now where CISOs will also be covered just like other C level officers. So I think that's a positive change and one that's absolutely needed because historically I think one of the problems that's been faced is that CISOs didn't have this type of protection and they can get personally sued.
[18:23]
C
Right.
[18:23]
B
So if you're a security officer leading this organization and then all of a sudden this breach occurs and then you're personally liable for it. That's a big implication and also a major deterrent for a lot of talent to want to take on that type of position.
[18:43]
C
Right.
[18:43]
B
Because if you can be personally liable for something, why would you want to sign up for that? So I think that is a major challenge that we're overcoming right now. Where a lot of damage, the damage has been done. I think too many. And I think that the ones who, I don't want to say take on the most risk, but they take a lot out of it, will be protected in some ways and maybe incentivized, like more talent to take on these roles. So that's, that's a positive. I think we're also seeing the transition to that right now. So that could be also a reason why there's a lot of fear is that Sisos may not even know this type of stuff is available to them yet. So there's that aspect too. So beyond the technical, right. It really comes down to like how personally liable am I to my job.
[19:32]
C
Right.
[19:33]
B
Because most of us have the benefit and the privilege to separate ourselves. So one, I think that's a major part of it. Two, AI is certainly on the mind, right, because it's like it opens up every pop like potential sci fi nightmare that I know I grew up on as almost bringing into reality. And like how do you fight against that? There's, I think the one thing is to one understand what is actually possible versus the science fiction. There's a lot of science fiction that has become truth, but there's still a lot that's still science fiction. So actually understanding what AI is truly capable of, that it's non sentient. Okay. No matter what viral news you see out there, like, sure, it might exist in some dark hole of the universe, I don't know, but as far as we know it doesn't exist.
[20:27]
A
So that we're not at age of Ultron quite yet.
[20:30]
B
Right, Right. Which is a good thing, I think they are. That's why I've been really making a point to say they are LLMs. They are extremely advanced machines that do pattern recognition and they produce a pattern in return. They are not thinking like we think, even though we do have a part of that in our own brain. It's not the same thing. We have to understand the technology and really understand like what its capabilities are. And there are a lot of unknowns, but don't lose sleep over those. Like just like that's the thing is like be take control of what you have and know what your constraints are. And your constraints are usually going to be around your budget at the end of the day. That's all we can do.
[21:19]
A
Well, as we head into the final stretch here, Amit, I'm going to direct this one to you. 82% of the leaders in the report said that all of the advice is too theoretical. That they're seeing across the market in terms of agentic readiness and security. So let's get a little bit more practical. What are the three actions that defenders can take right now to improve their resilience and their AI readiness?
[21:42]
C
Yeah, definitely. I think the technology is evolving right now. So that's why the frameworks are getting developed and then people are starting to deploy and all these things. So it's not as mature as it should be. So that's why the people are kind of facing the challenge. But from a practicality point of view, I would definitely suggest that see the agentic systems not as a, you know, as a consolidated system, but as a part of, you know, like in our framework, we are kind of saying three layers, but it depends on, like how, you know, if you are looking at attack pattern or let's say MITRE framework that are mostly driven by the type of attacks that are there, but see the problem from a different angle, like what are the components that are there? I would rather say that, stick to the architecture. Say that like, just like in our case when we are saying that tool layer, the cognitive layer and the identity layer, and then decide and look at each layer because each layer is having some different set of challenges and they have the ability to do different level of damage at each layer. So look at the threat modeling of those things by looking at that part and then see where the challenges are and then trying to fix those. For example, in two tool layer is very, very serious because that is actually the one that is carrying out the activity. Right. It's interacting with your database, it is interacting with your, you know, the internal stuff that you are trying to do. So make sure that it is running inside ephemeral containers. You have, you know, network, you know, segregations, you have firewalls in place. You are doing, you know, input and output, you know, validation of these things so that the tool does not really do anything, you know, wr long as per the environment. Right. So though we have described the recommendation in our report in more detail, and we have also given some insight into how the mainstream platforms are actually kind of have implemented to some degree these controls. So I do feel that the workspace isolation and sandbox, this type of isolation is very, very essential in deploying these systems.
[24:06]
A
Yeah, right. And Joe, I'll go back to you for this one. What are two inconvenient truths that every security leader is ignoring right now that they shouldn't be about AI and human oversight?
[24:19]
B
Well, one, I would say probably the, the most inconvenient Truth is probably the explosion of identities. It's just right now I think we're trying to get a hold of like what number it actually is. What's the ratio from human to non human identity? I know in past reports we've given numbers, we've coded numbers from our partners as well. But I think we're at a point now where it's like, well, everybody has a different number. I think it's become a subjective thing and that you can thank AI for that, especially with agents, I think. So that is an inconvenient truth. And I think it's obvious why identity management in itself becomes insurmountable task. Well, I shouldn't say insurmountable. Everything is possible, right? What I think is happening is it's moving so quickly that it's making it harder to catch up and manage. That's kind of what I'm getting at. The reason is that agent identity is just like, I've used this in the past, like elastic infrastructure in the cloud. You can have VMs spin up and spin down in a matter of seconds, just like identities. That's kind of the same thing. We're in this elasticity with identities right now. The second inconvenient truth is what I, I'll go back to the telemetry piece. There's going to be a lot of hard work here because it's a matter of like I, I post a few of the technical challenges, there's a lot more. And it's something that my team, or mit, myself and others we're currently trying to figure out, like how do we actually come up with actionable telemetry for agentic AI, that one can handle the elasticity of different agents being created and destroyed and vice versa, all that stuff. That's another inconvenient truth because no matter what anybody says right now, like, oh, I have complete visibility into my environment. Okay, you have visibility, but we're talking about observability, right? There's a. And the reason is there's a key difference. Like you may see all of them, but you are you actually observing what they're doing, right? There's a big difference to that. And that's what I'm getting at is that's the second inconvenient truth is like from visibility get to observability. So that's the second truth.
[26:52]
A
To your point earlier, the difference between visibility and observability is really like the context. Like yeah, you can see that they're there and that they're doing things, but Are they doing the things that you want them to? Are they doing things that you don't want them to? That context, rich insight is really the difference between the two terms, for sure. Well, as we, as we close out the conversation here, I'll ask both of you the same question. I'll start with you, Amit. What is the single most important message you want to leave with our listeners today?
[27:19]
C
I think my message would be that, you know, AI is coming, definitely be responsible and deploy it with responsibility. That's what I would say. Otherwise, the consequences could be very, very, very, very dangerous.
[27:34]
A
Yeah, right. Joe, what is your single most important message that you want to leave with everyone today?
[27:42]
B
We live in a scary world. I think we need to take a deep breath and really reflect on all the decisions that are being made. And I'm not talking about the greater. There's a lot of things happening. I want the scope down to just the AI problem, but I think it can relate to everything else as well. Reflect on the decisions you're making. There's a lot of doomsdayers as well as there always has, always has been with pretty much anything that's unhelpful. When you're constantly talking about how things are, are going to be destroyed, how jobs are going to be lost, how you know the world's going to end. That's never helpful. Just remember that and reflect on it and realize, like, how we can leverage AI in a positive, beneficial way. I want the benefits to be realized from AI for the world, but I think security has a major position to live in within this. Because without us, without us protecting critical infrastructure, hospitals and things like that, you still need humans to do this type of stuff. Because we're building these things. We should be in the loop on these things.
[28:57]
C
Right.
[28:59]
B
I'll end it on this. Right. It's like organizing a party and no one inviting you to the party you just organized. Organized. Okay. You're being left out of the loop, right? No, you want, you want to go to the party you organized, Right. It's the same thing with AIs. Like, if we're building all these things, you should be very smart in terms of looping in the human, different checkpoints to make important decisions. And that's the message I want to leave on, is like, I'm tired of the doomsayers. I'm tired of, like this apocalyptic scenarios. There's always things going down and there always will be. But there's also a lot of positives in the, in the, in the end of it. So I'll leave it there.
[29:36]
A
Right. Well, what a wonderful sentiment to leave us on. So, Amit, Joe, thank you both for your time today. It was really great having a conversation about this, this report. For those listening in, we'll link to the report in the show notes. And if you want to check out anything more about Rubrik zero Labs, you can check out their website. And thank you again for joining us, both Joe and Amit. And until next time. All right.
[29:57]
B
Thanks, Caleb.
[29:58]
C
Thank you, Gab.
[30:09]
A
That's a wrap on today's episode of Data Security Decoded. If you like what you heard today, please subscribe wherever you listen and leave us a review on Apple Podcasts or Spotify. Your feedback really helps me understand what you want to hear more about. And if you want to reach out to me directly about about the show, send me an email at data-security-decoded2k.com thank you to Rubrik for sponsoring this podcast. The team at N2K includes producer Liz Stokes and executive producer Jennifer Ivan. Content strategy by Mayan Plout Sound design by Elliot Peltzman Audio mixing by Elliot Peltzman and Trey Hester Video production support by Bridget Kriegy Wild and Sorrel Joppy. Until next time, stay resilient,
[30:47]
B
Sa.