Artificial Intelligence is rapidly transforming enterprise operations, but the risk landscape is evolving just as quickly.

This week's Technology Risk Weekly Briefing examines the emergence of AI agents as a significant governance and security challenge, major software supply-chain attacks impacting developers and cloud ecosystems, accelerating vulnerability exploitation driven by AI, and the growing importance of identity resilience as a core operational capability.

Topics covered include:

• AI agents and enterprise governance risks
• AI-driven vulnerability exploitation
• Microsoft-related supply chain compromises
• Identity resilience and cyber recovery
• Cloud and software ecosystem risks
• Operational resilience lessons for technology leaders

Sponsored by CAUTIX — helping organisations strengthen technology risk management, operational resilience, and digital trust.

This week’s Technology Risk Weekly Briefing explores several developments that highlight how rapidly the technology risk landscape is evolving.

We examine the emergence of AI agents as a new cyber attack vector, major software supply chain compromises affecting enterprise development environments, critical vulnerabilities impacting widely used software, and the increasing focus on securing open-source ecosystems.

The episode also explores what these developments mean for technology leaders, risk professionals, CISOs, and boards responsible for operational resilience and digital trust.

Topics covered:

• AI agents and emerging cyber security risks
• Software supply chain attacks targeting CI/CD environments
• Critical vulnerabilities affecting enterprise software
• Open-source security and dependency management
• Practical resilience and control improvements

Sponsored by CauTix — helping organisations strengthen secure and resilient digital operations through effective technology risk and control frameworks.

Artificial Intelligence is rapidly becoming embedded within core business operations, transforming everything from customer engagement and software development to analytics, decision-making and operational efficiency.

But as adoption accelerates, many organisations are discovering that governance frameworks are struggling to keep pace.

In this special deep-dive episode of the Technology Risk Podcast, David Horn explores why AI Governance has become one of the most critical technology risk challenges facing organisations today.

The episode examines:

• What AI Governance actually is and why it matters
• The key challenges organisations face when implementing effective oversight
• The risks of poor governance, including operational, regulatory, security and reputational impacts
• The growing importance of accountability, transparency and control
• Practical steps organisations can take to establish robust AI governance frameworks
• How boards, executives and technology leaders can balance innovation with responsible risk management

Whether your organisation is just beginning its AI journey or already deploying AI at scale, this episode provides practical insights to help ensure AI remains secure, resilient, compliant and trusted.

Presented by David Horn
Sponsored by CauTix – Technology Risk and Control

Helping organisations design, assess and strengthen the frameworks that underpin secure and reliable digital operations.

#AIGovernance #ArtificialIntelligence #TechnologyRisk #CyberSecurity #OperationalResilience #RiskManagement #Governance #DigitalTransformation #TechnologyControls #ResponsibleAI

AI recording devices are rapidly entering the workplace — from dedicated tools like Plaud Note and Pocket to smartphone apps, earbuds, and smartwatches capable of recording, transcribing, and summarising conversations in real time.

But what happens when confidential meetings, customer discussions, HR conversations, or strategic plans are uploaded to external AI platforms outside corporate control?

In this episode, CAUTIX explores the emerging security, privacy, legal, and governance risks created by AI-powered recording technology. We discuss:

• Shadow AI and uncontrolled data capture
• Cloud processing and third-party AI providers
• Privacy laws and consent requirements
• Risks around retention, searchability, and data leakage
• The impact on trust, culture, and compliance
• Practical steps organisations can take to reduce exposure

As AI transforms productivity, companies must decide where convenience ends — and where security begins.

Because in the age of ambient AI, every conversation can become a dataset.

In this week’s Technology Risk Weekly Briefing, David Horn examines the latest developments reshaping the technology risk landscape, including increasing regulatory pressure on AI governance, rising identity and cloud access attacks, emerging open-source software supply chain vulnerabilities, and growing concerns around operational resilience and third-party technology dependencies.

The episode explores:

• AI governance and model risk oversight
• Cloud identity and privileged access exposure
• Open-source software supply chain vulnerabilities
• Third-party ecosystem dependency risk
• Practical resilience and control improvements organisations should implement now

Sponsored by CauTix — helping organisations strengthen secure and resilient digital operations through effective technology risk and control frameworks.

In this week’s Technology Risk Weekly Briefing, David Horn explores the rapidly evolving technology risk landscape, including IMF warnings about AI-enabled cyber attacks, the continued surge in identity-based breaches, growing concentration risks in cloud and AI infrastructure, and lessons organisations must learn about operational resilience and third-party dependency management.

The episode covers:

• AI-enabled cyber threats and systemic financial stability concerns
• The rise in password and identity attacks
• Cloud and infrastructure concentration risk
• Third-party ecosystem vulnerabilities
• Practical resilience and control measures organisations should implement now

Sponsored by CauTix — helping organisations strengthen secure and reliable digital operations.

This week, David Horn reviews the technology risk stories that matter: AI-driven vulnerability pressure, the emerging patch wave, physical disruption to cloud regions in the Middle East, developer supply-chain compromise, utility-sector third-party risk, and community concerns about whether cyber defence can keep pace. The episode translates the headlines into practical actions for technology, risk, security, resilience and audit teams.