John White, EMEA Field CISO at Torq, tells Help Net Security that CISOs must design and govern hybrid human–AI workforces as agentic AI assumes decision-making and machine-speed actions. He warns accountability has shifted: CISOs remain responsible for AI-driven outcomes and for failures to adopt governed automation, citing 2025 Scattered Spider supply-chain attacks as a wake-up call. Practitioners must prioritize machine-speed governance, observability, and resilience.
Key Points
- 1Highlights agentic AI operating decisions and actions at machine speed across security workflows
- 2Explains CISOs retain accountability for AI outcomes and for failing to adopt machine-speed capabilities
- 3Urges adoption of governable, observable automation, balancing autonomy with human judgment and recovery plans
Scoring Rationale
Provides strong, actionable industry-wide guidance on agentic AI security governance, but relies on a single interview without broader empirical evidence.
Sources
Public references used for this report.
Practice interview problems based on real data
1,625 SQL & Python problems across 15 industry datasets — the exact type of data you work with.
Try 250 free problems