Feb 03 2025 26 mins 2
In this episode, we sit down with Sounil Yu, Co-Founder and CTO at Knostic, a security company focusing on need-to-know-based access controls for LLM-based Enterprise AI.
Sounil is a recognized industry security leader and the author of the widely popular Cyber Defense Matrix.
Sounil and I dug into a lot of interesting topics, such as:
- The latest news with DeepSeek and some of its implications regarding broader AI, cybersecurity, and the AI arms race, most notably between China and the U.S.
- The different approaches to AI security and safety we’re seeing unfold between the U.S. and EU, with the former being more best-practice and guidance-driven and the latter being more rigorous and including hard requirements.
- The age-old concept of need-to-know access control, the role it plays, and potentially new challenges implementing it when it comes to LLM’s
- Organizations rolling out and adopting LLMs and how they can go about implementing least-permissive access control and need-to-know
- Some of the different security considerations between
- Some of the work Knostic is doing around LLM enterprise readiness assessments, focusing on visibility, policy enforcement, and remediation of data exposure risks
----------------
Interested in sponsoring an issue of Resilient Cyber?
This includes reaching over 16,000 subscribers, ranging from Developers, Engineers, Architects, CISO’s/Security Leaders and Business Executives
Reach out below!
----------------
