Security & AI Governance

Agentic AI changes the threat model: the caller is no longer a person, and the guardrails can't live in a PDF. Here's where I work through API security when the caller is an agent, zero trust in practice, and governance as an operating model — controls that trigger, gates where decisions are irreversible, and audit trails that survive contact with a model.

9 items across talks, insights, writing, and media.

Talks

Writing

Media