KB is on the ground at ISACA 2026 North American Conference in Las Vegas, sitting down with two guests pulling at the same thread from different angles: the gap between how dependent we’ve become on modern tools and how little we actually understand them.

First, Pam Nigro, SVP of Security and Security Officer at Medecision and Board Director at ISACA, unpacks why supply chain has become the most vulnerable area in cyber security right now. She gets into the hidden risks sitting inside SaaS dependencies, API chains and open source libraries deployed once and forgotten, what operational paralysis actually looks like when a critical tool goes down, and why companies need to stop treating supply chain as a vendor risk checkbox and start treating it as a resilience problem.

Then Asaf Weisberg, CEO of introSight and Board Director at ISACA, joins to flip the AI ROI conversation. While recent ISACA research shows most companies still can’t measure return on AI investment, Asaf argues the ROI is already obvious if you know where to look. He breaks down why traditional ROI calculations don’t fit AI, what’s happening inside software teams right now with tools like Claude Code, and the very real risk of leaking your most valuable IP through free AI subscriptions.

More about ISACA’s AAIR Certification here: https://www.isaca.org/credentialing/aair
ISACA® 2026 AI Pulse Poll: https://www.isaca.org/resources/ai-pulse-poll