ClearTech Loop: In the Know, On the Move

AI Won’t Save You, But It Can Sink You Faster | ClearTech Loop Ep. 7 

August 12, 2025

AI Won’t Save You, But It Can Sink You Faster 

Every board wants AI in the stack. V-CISO Danny Pastrana explains when it helps and when it multiplies risk.

Episode Summary 

AI won’t make you bulletproof. It might just help you fail faster. 

In this 10-minute conversation, V-CISO Danny Pastrana walks through the double-edged reality of AI in cybersecurity. It can speed detection and response, but it can also open new attack surfaces, create privacy risks, and erode trust when safeguards are missing. 

His takeaway is clear: without strategy, governance, and human oversight, AI doesn’t reduce risk, it accelerates it. 

Three Questions We Tackle

1. Cyber risk is a business risk, not just a technology issue 

If compliance is weak, cyber insurance might not pay out when it matters. Large cyber claims rose 14% in frequency and 17% in severity in early 2024, much of it tied to breaches. The impact is financial and reputational.

“You need to evaluate the business impact of those cyber risks.
They impact your corporate image, your reputation…”

— Danny Pastrana

2. AI helps and hurts at the same time 

AI-powered detection tools can close response gaps, but false positives, hallucinations, and data leaks can undermine trust. Adversaries are also using AI to scale deepfakes and phishing, something the FBI highlights in its 2024 IC3 report and in public advisories. 

“Hackers are using the same AI tools we are, and getting better every day.”  

— Danny Pastrana

3. Human-in-the-loop is not optional 

AI calculates. Humans decide. The NIST AI Risk Management Framework stresses the need for human oversight, governance, and context-aware controls. Pastrana advises setting ethical use policies, vetting AI-enabled suppliers, and training employees to avoid accidental exposure of sensitive data. 

“AI is not going to eliminate people… the human is the one who decides.”

Danny Pastrana

Guest Bio

Danny Pastrana is a Puerto Rico–based virtual CISO and cybersecurity consultant focused on regulated industries and public sector entities. He has spoken at BSides Puerto Rico and holds multiple security and cloud certifications. 

Why This Matters Now 

AI adoption is accelerating across regulated industries, even as governance rules continue to evolve. In April 2025, the White House ordered federal agencies to appoint Chief AI Officers and expand AI use — but attackers won’t wait for regulations to catch up. Organizations need their own risk controls now. 

What You’ll Learn in This Episode 

  • How to quantify cyber risk in business terms, not just technical ones 
  • How to use AI without adding more noise than signal 
  • How to keep AI from becoming your biggest insider threat