An Inside Look at Clearwater Analytics CISO’s Rapid Response to Counter Shadow AI Threats

Despite a daunting $8.8 trillion worth of assets demanding protection, Sam Evans, CISO of Clearwater Analytics, met the challenge head-on, exhibiting how to rapidly reconfigure cybersecurity strategies to confront the vexatious quandary of ‘shadow AI’. Confronting Clearwater’s Board in October 2023, Evans’ foremost dread was an employee unknowingly copying customer data onto an unregulated AI system. Such ‘shadow AI’ poses a severe threat, specifically for data intensive fields, by covertly ‘stealing the data’s intelligence’.

As part of his defensive countermeasures, Evans highlighted how AI helped bolster Clearwater’s cyber resilience. AI’s incorporation into security playbooks drastically cut down on analyst search times, prompting swift triage and threat response procedures. From CrowdStrike to Microsoft Defender, AI’s impact is visibly permeating the cybersecurity sector. It’s elevating the accuracy of potential threat identification to new heights, channeling its machine learning prowess to aid in data security measures.

Evans emphasizes that he didn’t just approach the board with problems, but proactively proposed solutions. Central to his pivot was educating and empowering employees to identify and counteract newly developing threats. Taking a gamble with a short, aggressive timeline, Evans illustrates the rapid evolution of AI in cyber defence systems. From a pivotal technology perceived as ‘bull’, it matured into a bulletproof fortress, repelling sophisticated threats from data breach to deepfakes.

As AI continues to mold the security sphere, it’s clear that cybersecurity leaders like Sam Evans will remain instrumental in shaping a safer, more robust digital landscape. Yet, the narrative of ‘shadow AI’ serves as a stark reminder of technology’s double-edged sword, and the balancing act organizations must perform between harvesting AI’s potential and mitigating its risks.