At Future of Work Expo 2025, part of the #TECHSUPERSHOW, a distinguished panel of experts tackled one of the most pressing issues shaping the workforce of tomorrow: cybersecurity and privacy.
As businesses become increasingly data-driven, the flow of sensitive information, both within and outside organizations, is becoming harder to control. Add AI into the mix, and new privacy and compliance challenges emerge.
The discussion, led by moderator Jon Arnold, Principal, J Arnold & Associates, featured insights from Daniel Lakier, Field CISO at Myriad360; Walt Powell, Lead Field CISO at CDW; Brett Shockley, CEO and Chairman at Journey; and Tomas Sjostrom, President, Technology Services, James Moore & Co., all of whom talked about the growing importance of data security in a rapidly evolving digital landscape.
The panel session, “Cybersecurity and Privacy – Why So Central to Future of Work,” opened with a reflection on how COVID-19 dramatically altered workplace security.
"A new trend started with COVID when remote work became aggressive," said Sjostrom. "Forced solutions led to data moving outside corporate networks, exposing weaknesses in privacy protections, especially in the U.S., where data regulations are still evolving."
Lakier took a blunt approach.
"Companies don’t really want privacy; they want to monetize data. GDPR drew the line in Europe, using cybersecurity as an enforcement mechanism,” said Lakier. “In the U.S., companies operating in multiple states face an uphill battle navigating compliance."
Shockley highlighted the explosion of corporate data lakes.
"Every department thinks they have a right to access company data, leading to multiple, often unprotected copies," said Shockley.
Powell simplified the distinction by saying “Security is about protecting company assets, while privacy is about protecting consumer information. The challenge is managing both effectively.”
Then, there is the discussion around the nightmare scenario for IT teams.
The panelists agreed that the decentralization of work has made security professionals' jobs significantly harder.
"When workloads and employees are everywhere, so is the data," said Powell. "Much of it now resides on devices we don’t control. That’s a nightmare for IT teams."
With AI amplifying data’s value, the stakes are even higher.
"We need to protect large language models (LLMs) because they are among the most vulnerable," Lakier warned.
"AI is a powerful tool, but it can be used for both efficiency and deploying ransomware," Sjostrom added.
Powell introduced the concept of "strategic debt," the cost of delaying critical governance decisions. "Identity and data governance were once nice-to-haves; now, they have clear ROI. You can’t build AI solutions without proper governance, it’s a prerequisite."
Shockley stressed the importance of controlling AI’s access to sensitive data. "Conversational AI doesn’t need to hear everything. Yet major AI providers make promises we struggle to believe. A zero-knowledge model, where AI only processes necessary data, offers a safer alternative."
So, what’s the best strategy for businesses moving forward? According to Lakier, logic and awareness are the keys.
"If a new technology is difficult to secure, it’s probably not for you. Awareness is the single most important tool,” said Lakier. “Most breaches happen through social engineering, not technological failure. Companies need constant education and testing."
Powell closed with a critical takeaway.
"Before AI can be fully embraced, governance must come first. The question isn’t just about what AI can do, but what we’re comfortable allowing it to do."
This panel made one thing clear. Cybersecurity and privacy aren’t just IT concerns; they are the foundation of the future of work.
Edited by
Greg Tavarez
