David Spark
π€ SpeakerAppearances Over Time
Podcast Appearances
How can we align different departments' objectives?
Quote, one innocent prompt has led to the spread of customer financial data into multiple exposed unsanctioned locations.
End quote.
Pranava Aduri of Bedrock Data sees most data security tools working like x-rays.
They see patterns like credit card numbers in an S3 bucket, but miss the soft tissue of lineage, entitlement, and business context.
An MRI sees a whole organism, not just what data exists, but who touched it, where it came from, and whether that access made sense given policy.
Right now, legal rights of policy.
The business holds the context.
Security manages the controls.
None of them are looking at the same picture.
So if an X-ray tooling can't see what AI workloads are doing with the permissions they've been granted, how does any compliance obligation get enforced?
And I mean, do you believe this premise, Mike Mello, that these three groups are working in silos and they're sort of having different viewpoints on the environment?
By the way, that's a good way of saying it's going to be havoc in your organization, not just for the security and privacy aspect,
But like, well, privacy over to the legal department.
But with everybody else trying to make sense of it, it's just going to go out of control.
Absolutely.
All right.
I'm going to throw this to you, Mike.
Mike, do you agree with this sort of the analogy of x-rays and MRIs that Pranava put forth here?
Well, a body is a system, and I think that's what he's also talking about.