In this episode of CISO Tradecraft, host G Mark Hardy speaks with EJ Pappas of PKWARE and Ross Young about why AI-driven threats demand a shift from platform-centric security to a data-centric strategy.

CISOs still struggle to answer, “Where is our sensitive data?” as it sprawls across AI, endpoints, cloud, SaaS, and shared environments. In this conversation, we explore:

• Why CISOs still struggle with data visibility

• How vendor sprawl and fragmented toolsets create blind spots

• The difference between structured and unstructured data risk

• Why AI accelerates both defense and mistakes

• DLP vs. encryption: complementary, not competing controls

• Commonly missed exposure areas (test/QA environments, cloud storage)

• Compliance drivers including GLBA, PCI DSS, HIPAA, HITRUST CSF, and NIST SP 800-171

Learn more at PKWARE.com/demo or contact EJ.Pappas@PKWARE.com