Closing the AI Security Gap: What 300 CISOs say they are missing

A critical gap is emerging between rapid AI adoption and the ability to secure it effectively. Based on findings from Pentera’s AI Security and Exposure Survey 2026, this session highlights how many organizations lack visibility into where AI is deployed, depend on legacy controls not built for AI driven workflows and still do not have a defined approach to AI security testing. The result is increased exposure across data, identity and infrastructure that attackers can exploit.

Ryan Dorey from Pentera and Chris Cochran from SANS examine benchmark data from 300 CISOs and explain how these gaps translate into real world risk. The discussion also explores how adversarial testing can help validate AI related threats and strengthen security programs.