Most security conversations at RSAC start with visibility. This one did not. I was at the Commvault booth, which by the way is set up like a full wrestling ring, and I sat down with the José Gomez Field CTO Security to talk about something that feels much more real right now. Control.
Not dashboards. Not alerts. Actual control over who is accessing data in real time. What stood out to me in this conversation was how much AI is changing the risk surface.
It is not just more data. It is more access, more queries, more non human identities touching sensitive systems all the time. And a lot of traditional tools were never designed for this.
One point that stuck with me. Structured data is still one of the hardest things to secure properly.
We assume it is easier because it is organized. But when access patterns explode, especially with AI, it becomes harder to track who should see what at any given moment.
That is where real time access control starts to matter.
Not after the fact. Not in a report. Right when the query happens.
We also talked about something every team struggles with. How do you enforce governance without slowing people down?
Because if security becomes a blocker, people will find a way around it. The interesting shift here is making security part of the flow instead of a checkpoint outside it.
And tying that directly back to resilience. Because the more control you have over access, the faster you can respond and recover when something goes wrong.
Another great conversation from the Commvault booth.
#data #ai #security #rsac #attack #api #commvault #theravitshow
