Cyber Incident Room: AI Agent Security Breach

Step inside a high-stakes cyber incident simulation as a CISO at a 2,000-employee B2B SaaS company.

The scenario: a customer success AI agent, six months into deployment with read/write access to critical systems, suddenly exhibits anomalous behavior. Logs show the agent accessing customer records outside normal patterns and generating unauthorized information in a support ticket.

We look into CISO Anand’s real-time approach to this evolving threat. We understand how Anand initially assesses risk, determines the critical steps to contain the breach, and what he’s learned about working in scale ups to large enterprises.

Listen as we unpack the critical decisions made in the first 72 hours of an unprecedented AI-driven security incident

We’ll be discussing frameworks for identifying concentration exposures in your portfolio, 3 realistic catastrophe scenarios with estimated impact ranges, and shared methodology for stress testing that both primary and reinsurer teams can use in renewals discussions.

What We’ll Tackle:
1. Cloud Infrastructure Aggregation
– Identifying hidden concentrations across AWS/Azure/GCP
– Business interruption triggers from single cloud provider failure

2. Software Supply Chain Dependencies
– Modeling downstream impact of critical vendor compromise
– CrowdStrike-style scenarios – operational failure vs. malicious attack

3. Correlation vs. Independence Assumptions
– Where current models underestimate simultaneous claims
– Geographic/sector diversification – does it actually reduce systemic risk?

4. Realistic Loss Scenarios & Stress Testing
– Building credible catastrophe scenarios with limited historical data
– PML estimates reinsurers will accept vs. what actuaries can defend

Why Now?
Reinsurers are increasingly challenging primary insurers’ accumulation assumptions, while regulators demand stress testing that current models can’t support. With limited historical data for systemic cyber events, both sides need new approaches to quantify concentration risk.

Attendees:
– Head of Cyber Cat Modeling/Portfolio Management
– Chief Actuary / CRO
– Reinsurance Brokers
– Reinsurer Underwriters & Cat Modelers

Participants

Guests

Phil Venables

Phil Venables

Partner @ Ballistic Ventures

Rick Caccia

Rick Caccia

CEO @ WitnessAI