Rob T. Lee
Chief of Research & Chief AI Officer at SANS Institute. Helping organizations secure AI through advanced defense strategies and governance frameworks.
Chief of Research and Chief AI Officer
Leading SANS Institute's research division and AI initiatives to advance cybersecurity knowledge, develop practical AI security solutions, and educate the global security community
Shadow AI Research
Developing methodologies for discovering and managing unauthorized AI deployments
AI Governance Frameworks
Creating comprehensive frameworks for responsible AI implementation and compliance
Adversarial AI Defense
Researching attack vectors and defense strategies for AI system security
AI Risk Management
Advancing risk assessment methodologies for enterprise AI deployments
SANS Institute AI Security Programs
The world's most trusted AI security training and research, developed by practitioners for practitioners.
Approach: Protect, Use, and Govern AI
Every executive is prioritizing AI, but confusion and uncertainty still dominate its adoption. I believe success depends on owning AI securely, which means addressing all three dimensions at once.
Why all three matter:
Protecting AI without using it leaves capability on the table. Using AI without governance risks chaos. Governance without technical protections creates a false sense of security. My work and SANS programs bring these together so organizations can move forward with clarity.
Protect AI
Defend models, applications, and data pipelines from tampering, poisoning, prompt injection, and other adversarial techniques. This track focuses on the technical security of AI assets from development through deployment.
Use AI in Cybersecurity
Leverage AI and ML to improve detection, response, and resilience. This means integrating AI into SOC workflows, threat hunting, and incident analysis to match attacker speed and scale.
Govern AI
Translate complex AI regulations into actionable governance frameworks that boards and leadership teams can implement. This includes establishing oversight structures, ensuring regulatory compliance, and aligning AI initiatives with enterprise risk management and IT transformation goals.
Articles & Insights
Cybersecurity in the AI Era: Evolve or Be Left Behind
Essential framework for cybersecurity professionals to stay relevant as AI transforms the field
AI & Cybersecurity Careers: The Complete Roadmap for 2025 and Beyond
Comprehensive guide to building a successful career at the intersection of AI and cybersecurity
AI: The Executive's New Reality
How executives can navigate AI adoption while managing risks and opportunities
Speaking
Topics Include
Boards Can't Pretend to Understand AI. They Have to Learn.
What boardrooms need isn't another jargon-heavy AI strategy session. They need someone who's built the programs, advised the agencies, and seen the breach reports. This session gives directors a clear language and structure for AI literacy and board engagement.
The Workforce You Need Is Already Behind.
Everyone talks about AI transformation. Few are building teams who can use it, secure it, and respond to it. Rob draws from decades building the global cyber workforce to show what readiness actually looks like, from SOCs to C-suites to startups, and how to lead toward it.
AI Moves Fast. Your Governance Can't Lag.
A sharp, operationally grounded session for executives and boards on what AI adoption looks like in the wild, when tools get ahead of policy, when teams go rogue, and when 'pilot projects' turn into attack surfaces. Rob breaks down how to set the right guardrails early, ask better questions, and reduce real exposure without killing momentum.
Attackers Don't Wait for Your Next Planning Cycle.
Drawing from his work in national security and incident response, Rob shows how adversaries are already using AI systems to scale attacks, break defenses, and shift speed in ways most leaders haven't prepared for. A critical briefing for anyone responsible for protecting systems or investing in them.
Lead Your Organization's Secure AI Transformation
Join boards, security leaders, and executives getting practical frameworks for adopting AI securely, governing AI initiatives effectively, and building organizational AI readiness.