SANS 2025 Government Security Forum

The rapid proliferation of Artificial Intelligence (AI) across the federal landscape presents both unprecedented opportunities and novel security challenges. As AI systems become increasingly integrated into critical infrastructure, decision-making processes, and citizen services, the traditional perimeter-based security model proves insufficient. This presentation will explore the imperative of adopting a Zero Trust architecture to effectively secure federal operations in this evolving AI-driven world. We will examine how the core principles of Zero Trust -- assume breach, explicit verification, and least privilege -- provide a robust framework for mitigating the unique risks introduced by AI, including sophisticated cyberattacks leveraging AI, data poisoning, and the potential for autonomous system compromise. By highlighting key considerations and practical strategies, this session aims to equip federal stakeholders with the knowledge necessary to implement Zero Trust principles and ensure the resilience and security of their AI-enabled environments.

Confirmed Panelists:

Sean Frazier, Federal CSO, OKTA

Joe Boye, Solutions Consultant Manager, Palo Alto Networks

Historically, Operational Technology (OT) has been treated as distinct from Information Technology (IT), which traditionally focused solely on business environments. However, with the rise of digitalization, artificial intelligence (AI), cloud adoption, and the growing presence of IT-like tools such as virtual servers, software-defined networking (SDN), SD-WAN, and virtual I/O, this distinction is rapidly fading from a technology standpoint. Today, most systems run on Windows, Linux, or variants thereof, requiring a new, integrated approach. IT and OT are no longer isolated; they are now joint stakeholders working toward a shared mission.

Despite this integration, fundamental differences in how IT and OT operate remain and must be acknowledged. IT teams need to understand the constraints and priorities of operational environments, while OT teams must learn to manage and secure IT-based tools now embedded in industrial systems. The era of saying "OT is airgapped" is over. Both teams must collaborate to harness emerging technologies like AI and cloud in ways that drive business outcomes and efficiency, while simultaneously preserving operational resilience and safety.

Panelists: Robert Mathieson, Sales Engineering Director, Public Sector, Extrahop

For decades, critical infrastructure has relied on centralized systems designed for scale. But AI is enabling a shift toward intelligent, decentralized, and highly customized solutions - microgrids, autonomous care, adaptive logistics - that reduce dependence on monolithic systems. This talk explores how AI can enhance national resilience, lower infrastructure risk, and redefine what we consider "critical." It's a call to rethink our infrastructure strategy for an era where the economic driver towards scale may no longer be necessary.

Confirmed Panelists:

Dr. Nash Borges, SVP Engineering, Sophos

Uriel Cohen, VP Products, VMRay

100% of all missions depend on operational technology and control systems.  Enter: CROCS – no, not the rubber shoe – the DAF Cyber Resilience Office for Control Systems. CROCS is the first dedicated organization that addresses the growing cyber threats to Air and Space Force installation infrastructure, ensuring cyber safety at every turn.  Learn 3 actions to take and 3 pitfalls to avoid in advancing OT cyber resilience.

Confirmed Panelists:

Jennifer Bisceglie, Founder and Executive Vice Chair, Interos

Andy Lewis, Technical Marketing Manager, ReversingLabs