AI Won’t Save Cybersecurity

Two Cyber Chicks host Jax welcomes Kathleen Morerti, former CTO, CISO and founder of Security Bias, to dissect the hype that artificial intelligence will "fix" cybersecurity. Morerti draws on a decade of protocol‑level experience and recent work in cloud‑native, zero‑trust environments to argue that AI is a powerful augment, not a substitute for solid architecture. She emphasizes that AI excels at needle‑in‑haystack detection, yet true resilience comes from designing systems that can be patched instantly, micro‑segmented, and continuously integrated. By embedding security into code and leveraging containerized updates, organizations can shrink attack windows far beyond what legacy stacks allow. Morerti warns that reliance on AI‑generated diagrams erodes critical thinking, especially among students. She cites examples of vibecoding that translate vulnerable C code into memory‑safe Rust, illustrating both the promise and current limitations of generative models. Her startup, Security Bias, seeks to offload security complexity from small businesses to SaaS providers, ensuring compliance without dedicated IT staff. The conversation underscores that firms must modernize infrastructure, invest in training, and treat AI as a tool rather than a panacea. As layoffs shrink security budgets, automated, cloud‑native solutions and provider‑managed security become essential for maintaining protection across enterprises of all sizes.