Omar Khawaja
Chief Information Security Officer
Databricks
Omar leads Databricks' Field Security, teaches at Carnegie Mellon University's CISO and NACD programs, serves on boards of HITRUST and FAIR Institute, was CISO of a $26B enterprise and leads a team that developed two AI risk frameworks (DASF, DAGF)
Speaker sessions
From Risk to Resilience: Empowering Security to Unlock Enterprise AI
While business and data teams race ahead with AI, security and governance leaders are often hesitant, slowing enterprise AI adoption. This talk introduces an operationalizable AI Security Framework (DASF), an operational guide bridging this divide. You'll learn about the 12 components of a modern AI system, how its 4 subsystems interact, and the 62 risks and threats at each layer. The session details how to identify those risks and map each to 64 actionable controls—empowering organizations to rapidly and confidently adopt AI while managing security risks. While most business leaders and data teams are excited about AI, leaders of governance/risk functions (e.g.: security, privacy, legal, ethics, compliance, etc.) are concerned about the unintended adverse consequences (risk!) of AI. This lack of alignment is among the main reasons for the slow adoption of AI in many larger organizations. To address this chasm between AI supporters and detractors, this talk will walk through an operationalizable framework to confidently manage AI risks: What components make up an end-to-end AI system? How do the subsystems of AI work together as a cohesive AI system? What are the specific technical risks of using AI across each of these components? What threats can cause each risk to be realized? Which specific actionable controls can mitigate each risk? What is the key organizational (non-technical) risks of AI and how to mitigate them?
- 14:00
- Thu
- 04 Dec
Stage:
Workshop - L1 - Suite 14
Sessions Type:
Workshop