Artificial intelligence (AI) is already embedded in security operations. The challenge now is no longer adoption; it's control. As organizations integrate AI into workflows, tools and decision-making, they're also introducing new risks: reduced visibility, expanded attack surfaces and a growing gap between governance and implementation.

AI Spotlight July 14-15, 2026The ISC2 Spotlight on Artificial Intelligence focuses on how security teams can move from awareness to action, managing AI with the same rigor they apply to the rest of their security program. 

This free virtual event is limited to ISC2 Members, Candidates and Associates. Cybersecurity professionals in every stage of their career are encouraged to participate. Attendees can earn up to 6.25 CPE credits for attending the ISC2 Spotlight sessions.

Register now.

Where AI Is Changing the Security Equation

AI is reshaping both sides of cybersecurity. It is improving detection, accelerating analysis and automating routine tasks, but it is also lowering the barrier to attack and introducing new classes of vulnerabilities.

That dual impact is reflected throughout this year's agenda. The sessions focus less on what AI could do in the future and more on what security teams need to address now: governance gaps, emerging attack techniques and the realities of securing AI at scale.

Why This Matters Now

AI adoption is moving faster than many security programs can adapt.

Organizations are increasingly grappling with questions around visibility, accountability and risk management as AI capabilities become embedded across business functions. Security teams must now understand not only how to leverage AI effectively, but also how to govern, secure and monitor its use.

If you attended last year's ISC2 Spotlight on Artificial Intelligence, which explored the ethical implications of AI, data privacy considerations and emerging cybersecurity applications, this year's event builds on that foundation by focusing on practical implementation, risk management and operational security.

Agenda Highlights

July 14

Taming AI Sprawl and Shadow AI Through Strong Governance

10:00 a.m. – 10:45 a.m. ET

As AI tools proliferate across organizations, many security teams are struggling with shadow AI and limited visibility into how models and applications are being used. This panel examines strategies for identifying unauthorized AI use, strengthening governance and aligning controls with frameworks such as NIST AI RMF, the EU AI Act and ISO 42001.

Inside the 2.7x Problem: Vulnerability Discovery Is No Longer the Bottleneck

10:55 a.m. – 11:55 a.m. ET

Sponsored by Cobalt

Drawing on findings from AI and large language model (LLM) application penetration testing, this session explores how AI-enabled applications are introducing new vulnerability patterns. Attendees will gain insight into prompt injection attacks, automated exploitation techniques and evolving attacker behavior.

Preparing for an AI-Driven Threat Landscape

12:05 p.m. – 1:05 p.m. ET

Sponsored by Wiz

AI is changing both the threats organizations face and the technologies they must defend. This session explores how security teams can prepare for increasingly AI-enabled threat actors while adapting strategies to address emerging risks.

July 15

The AI Pivot: Safeguarding the Future of ISC2 Certifications

9:00 a.m. – 9:45 a.m. ET

Artificial intelligence is rapidly becoming an essential cybersecurity skill. This session examines how ISC2 is evolving its certification portfolio to reflect that reality by integrating AI concepts, security considerations and governance responsibilities across existing credentials. Attendees will gain insight into how ISC2's Job Task Analysis process ensures certifications continue to validate the human judgment needed to govern increasingly intelligent systems and technologies.

AI Knows No Boundaries: Governing Data Access Before It's Too Late

10:00 a.m. – 11:00 a.m. ET

Sponsored by Netwrix

AI tools can only be as secure as the environments in which they operate. This session explores how misconfigured permissions, unclassified sensitive data and excessive access privileges can create significant exposure when AI tools are deployed. Speakers will discuss readiness assessments, continuous visibility into AI-enabled data access and governance strategies that extend beyond human users to AI agents and service accounts.

The AI-Driven SOC: Navigating the Shift to Autonomous Defense

11:10 a.m. – 12:10 p.m. ET

Sponsored by Palo Alto Networks

As attackers increasingly leverage AI to operate at scale, security operations centers must evolve to keep pace. This session examines how organizations can modernize their SOC capabilities by leveraging AI-driven automation, reducing dependence on manual processes and improving response times. Attendees will learn how to address alert fatigue, unify visibility across security tools and build more resilient, machine-speed defenses.

Are Incident Response Programs Ready for AI?

12:20 p.m. – 1:05 p.m. ET

Incident response has always required speed, coordination and adaptability. The emergence of AI and autonomous agents introduces new complexities that may challenge traditional response models. This discussion explores the preparedness of current incident response programs to address AI-related risks and examines whether human-led processes can keep pace with machine-speed threats. Participants will gain practical considerations for strengthening resilience and updating incident response strategies for the AI era.

Join the Discussion

Security teams do not have the option to wait for AI to mature. The technology is already part of the environment, and so are the risks.

The ISC2 Spotlight on Artificial Intelligence provides practical guidance on implementing controls, reducing exposure and operating effectively in environments where AI is already in use.

Register to attend and earn more than six CPE credits. 

Related Insights