ClearTech Loop: In the Know, On the Move

The CISO’s AI Dilemma: Move Fast, Don’t Break Trust

September 30, 2025
he CISO’s AI Dilemma: Move Fast, Don’t Break Trust Josh Copeland image

Byline: Hosted by Jo Peterson · ClearTech Loop 

Download Transcript (pdf)

From Hype to Accountability

CISOs are being asked two conflicting things at once: deploy AI faster and guarantee it won’t backfire. In this ClearTech Loop episode, Jo talks with Josh Copeland about using AI as a force multiplier while hardwiring governance, explainability, and resilience into the program from day one. The conversation covers four high-leverage AI plays, the real state of shadow AI in the enterprise, and why “AI won’t testify for you in court”—so you’d better keep a human in the loop.  

 
“Shadow AI is a solid eight out of ten on the risk scale.”” 

josh copeland

Three Big Questions for CISOs 

1. What are the first AI moves that actually move the needle

Josh outlines four practical plays CISOs can deploy now: hypothesis testing, knowledge synthesis, contextualized decision-making, and AI as a creativity catalyst for playbooks and tabletop scenarios.  

2. How do you embed security without slowing innovation? ? 

Shift left: threat modeling, data classification, privacy impact assessments, and enterprise-grade licensing with zero data retention—plus synthetic data for safe experimentation. Build the guardrails early; don’t bolt them on later.  

3. Shadow AI—crack down or co-opt? ? 

Josh rates shadow AI an “eight out of ten on the risk scale.” The answer isn’t blanket bans; it’s discovery, sanctioned tools, clear guardrails, and low-friction controls that keep usage above  

 
“AI won’t testify for you in court, nor will AI serve your jail sentence.”

josh copeland

What You’ll Learn 

  • Four AI “survival moves” CISOs can operationalize now 
  • How to make governance a speed enabler, not a brake 
  • Why synthetic data and zero-retention enterprise licenses matter 
  • A pragmatic approach to shadow AI: discover, classify, govern 
  • The CISO’s dual role: capability architect and risk governor 
  • Why every org needs an AI Incident Response playbook before scale-up  


“Security can’t be the gate at the end—it has to be the invisible exoskeleton that supports rapid experimentation.

josh copeland

About The Guest: Josh Copeland 

Josh Copeland is a cybersecurity executive, professor, and board advisor with 25+ years across federal, state, and commercial sectors. He’s Director of Cybersecurity at Crescendo, Deputy Commander of the Louisiana State Guard’s Cyber Reserve, and adjunct faculty at Tulane University. Known for #UnpopularOpinion, he’s the author of Unpopular Opinion: Burning Down the Bullsh*t to Rebuild Cybersecurity

Listen · Watch · Subscribe 

🎧 Listen to the full episode on the player above
📺 Watch on YouTube
📰 Subscribe to ClearTech Loop for more straight-talk from the CISO front lines

Closing Thoughts: Architecting AI Trust

AI is both crown jewel and loaded weapon. The winning CISOs won’t block it; they’ll govern it—with clear guardrails, human oversight, and resilience plans that assume failure paths and keep the enterprise safe. 

See you in the Loop.