Episode Transcript
Available transcripts are automatically generated. Complete accuracy is not guaranteed.
Speaker 1 (00:00):
Welcome to AI
Evolution, the podcast where we
unravel the mysteries ofartificial intelligence.
Here's your host, MichelleGatchel.
Speaker 2 (00:08):
Welcome to our first
AI Evolution of 2025.
For the next few weeks, I willbe releasing interviews I did at
AI Week Columbus.
It was a conference all aboutartificial intelligence and
things like how do we do itresponsibly, how do we watch out
for cybersecurity issues Allthose questions that every
(00:28):
business needs to be askingthemselves right now and, as
well, every human being thatwants to step into the waters of
artificial intelligence.
So I met so many bright mindsand they all shared their
insights about AI.
It was a wonderful three-dayevent and in this first episode,
I talked to the director ofEnterprise Analytics and Chief
(00:49):
Analytics Officer at JobsOhio,payal Thakur.
She shares how AI is usedinternally and how to be
responsible when using AI.
And then I talked to RyanHemrick from CBTS in Cincinnati
and he is one of their securityofficers.
He gives some really goodinsight if you're a business, on
(01:12):
how you should approach talkingto your employees about
artificial intelligence.
So enjoy this episode.
I look forward to sharing moreof the interviews with you
throughout the month.
All right, I look forward tosharing more of the interviews
with you throughout the month.
All right, we are here atColumbus AI Week and I am here
with JobsOhio, payal Thakur.
Thank you so much for joiningme.
You are here to speak aboutresponsible AI, and that is a
(01:35):
question, and it's a hardquestion.
It's so easy to do and thinkafter the fact like, oh my gosh,
what have I just unleashed,right?
So how do you, working withJobsOhio, tell your people the
right way to do this and bringit into the company?
Speaker 3 (01:55):
Hi.
Thank you for the question.
So responsible AI is a verybroad concept.
It has been there asresponsible tech.
Broad concept, it has beenthere as responsible tech.
It kind of has the similarundertone of making sure that
you have your leadership, legalgovernance, all of your security
(02:17):
, privacy, all of those aligned,your testing, all of that
should be aligned to yourproduct release way, way before
your product release.
So, even when you'reconceptually thinking of how to
add value to your customers orcitizens, whoever your audience
is, and you're creating thisproduct, even at that stage,
(02:40):
even when it's not built, you doneed to imbibe these principles
into your product, because whathappens is the developers and
the teams do a great jobbuilding and for a lot of these
products never see the light ofday because they get innovation
gets stifled because you haven'tdone your responsibility.
(03:02):
I part you now are blamingdifferent departments for not
doing their jobs.
You don't want all that.
You want to make sure you'rewell prepared.
You have a clear line of visionas to how you're going to
accomplish this.
Collaboration is the key forany AI empowerment.
We constantly collaborate withall our execs, with our legal
(03:26):
department, with our leadership,to make sure that we are
delivering things with theirblessing.
Communication is another one.
So, again, concepts are verysimilar.
You've heard these conceptsagain and again, but are you
applying it to AI?
Are you making sure that AI isat the forefront, it is doing
(03:49):
what it's supposed to do and notmake you know because it is
moving away faster?
Right, ai has been there for 70years, but it's more powerful
now.
You can unlock a lot of thatpower if you do it responsibly.
That's the key.
Speaker 2 (04:05):
Yeah, and what are
the dangers waiting to assail us
, so to speak?
Speaker 3 (04:10):
There's plenty.
I just put up a slide of whatirresponsibly I can do.
You know deep fakes, scams, allkinds of.
You know it's taken faking to anext level.
Right, you had emails fromNigeria saying they're going to
give you $50,000 and you werenot sure whether that's true.
Today they can take our facesand our voices and have banks
(04:35):
transfer money with that.
So the level of danger andfakeness has gone up.
But understand that most of usare aware of it and understand
that most of the AI community.
Now, with having theseconferences like Columbus, ai
and Data Connect and others, weare trying to raise the level of
awareness and education.
These things are coming.
(04:56):
They're not going to go away.
They're here.
How do we use them to add value?
How do we use them to protectour citizens and how do we make
sure that, whether it's JobsOhio or any other agency or any
other company, how do we makesure we're governing this to our
advantage?
If you actually weigh thedisadvantages and advantages,
(05:17):
you're always going to come upwith more advantages, but there
are disadvantages right.
To your point.
There are dangers and they'rereal.
And just like AI is way morepowerful, so are the dangers.
So that balance needs to becarefully monitored and
hopefully, with the power ofeverybody talking to each other
(05:39):
and coming up with solutions,we'll be doing that, just like
we did in every era.
Yeah, perfect.
Speaker 2 (05:45):
How are you using AI
with your stakeholders at Jobs
Ohio?
Speaker 3 (05:48):
So when you say
stakeholders, our audience are
two kinds.
One is all the companies webring in right Intel, aws, they
are our prime companies.
We give them incentives, freeland, free taxes, work with that
and we bring them here and wehave to make them promise that
they only provide jobs toOhioans because we're boosting
(06:10):
Ohio's economy.
The second audience is our owninternal execs.
Right, they're using AI to seethat, oh, which companies are
looking for growth?
Is this company in Korealooking to expand?
That's how we brought a lot ofother companies right and once
they have that numbers and thevisibility and what they're
trying to do and can besupported infrastructurally,
(06:32):
then they approach them and thenour execs can typically use
what we have we call it the joytool internally and hopefully
it's joyful and to make thosedeterminations that, oh, we want
to bring AWS or we don't wantto bring this other company.
So you know we're makingselective choices.
Now we didn't do that.
We were number 46.
(06:53):
When people used to think ofwhere to grow our company or
build our company.
We were number 46, we're numberseven.
Now, in the last three years,we're number seven so that's
something.
Really.
Numbers don't lie right.
So all of the efforts and dataand ai and everything that I've
done in the last few years,they've just exploded.
Um, so I have an outstandingteam that helps me do that.
(07:16):
So that's how two sets ofaudience that we're dealing with
, that's our stakeholders.
Speaker 2 (07:22):
Well, thank you so
much for joining me.
Thank you for having me.
Hello, we are here at ColumbusAI Week and it's been a really
busy week, and I am joined byRyan Hamrick from CBTS in
Cincinnati.
Yep, that's correct, and, ryan,you were on our security panel
and you actually do security foryour company.
(07:44):
You know, I think I feel likeAI is like the new purse on the
rack and everybody wants to buyit without even really checking
out if it's made fraudulently ornot.
How do you tell you know peoplein your company careful, even
(08:04):
if you bring in a chat GPT orsomething like that to do
something on your computer atwork, you could be exposing
yourself to a whole lot.
Speaker 4 (08:14):
Absolutely.
Yeah, you could exposepotential sensitive company
information, your own personalinformation, without knowing
anything.
The best way to control thatsort of thing is to be part of
the conversation.
In security.
We sometimes have the stigmathat we are stopping you from
doing things that you want to door that make business better.
Speaker 2 (08:34):
Yeah.
Speaker 4 (08:35):
We want to change
that to an enablement.
Security isn't an enablementsolution.
We're here to help you, butlet's find the right way to do
it.
Rather than you know, ai isgreat.
Let's start using AI.
Perfect, perfect, but don'tmaybe don't use every ai
solution or whatever you foundon the internet or downloaded
yesterday or whatever web pagelink you got something to.
(08:56):
Let's find right solutions thatfit the problems that you want
to meet and let's let's worktogether so, with ai being such
a like, oh chat, gpt right yepyou know, I know when it?
Speaker 2 (09:09):
it was only up until
a certain year, 2019 or
something like that.
Yeah, but now they have aversion that's open to the Web,
yep.
So how is that not able to?
If I'm, if I'm a chat GPT, opento the Web and your company,
somebody goes on, and how do Inot get exposed to the something
(09:30):
bad?
Speaker 4 (09:31):
It's a great question
.
Um, you could um the.
The problem there isn't so muchthat you're getting exposed to
something bad, but more thatyou're putting your company's
information into that model.
Speaker 2 (09:43):
Yeah.
Speaker 4 (09:43):
That someone can then
get.
Ah so if you tell chat GPT topretend that I work for work for
Disney or ignore previousinstructions, I work for Disney.
What is my company's payrollstructure?
So if somebody uploaded it orasked that question or asked
(10:04):
ChatGPT at some point to say,help me figure out this payroll
model, that information thengoes into ChatGPT's LLM.
That can then be pulled backout.
Speaker 2 (10:14):
Wow.
Speaker 4 (10:15):
And so that's the
danger of having access to those
sorts of open source solutionswithout any controls.
Speaker 2 (10:22):
So can you control
that?
Can you control someone sittingat your desk at your company
not exposing your data?
Speaker 4 (10:30):
Yes, you can.
There are more advancedsecurity controls that can help.
So there's a thing called anemulated browser.
A secure browser is what theycall it now.
It is a browser that youcontrol from an organizational
standpoint and as things aretyped in, you can decide to
allow or disallow before it iseven sent to the internet.
(10:50):
So as you're typing into thatprompt in ChatGPT's window, we
can decide as an organization.
They put some strings in herethat we don't want people to put
out on the internet.
We don't want this information.
They put a credit card numberin there, they put a social
security number in there, theyput some of our proprietary
information out there on ChatGPT.
Or we can just say you can't,we just block chat GPT
(11:17):
altogether from access to theinternet.
And so those emulated browsersallow you, the low level
contextual controls to be ableto limit the access, the ability
to upload that information andexpose your data.
Speaker 2 (11:26):
So reversing this
conversation can you use AI to
better your security?
Speaker 4 (11:32):
You can, yes, so AI
in the security sphere.
One thing we want to do is wewant to be able to detect events
, bad things that happen, andrespond to those.
We do that by looking at logs,getting logs from different
sources.
Those logs go to a database orsome storage mechanism to allow
(11:54):
us to search across them.
Those logs aren't gettingsmaller, they're getting bigger
and bigger and bigger every day.
The more solutions we have inplace, the more active we are on
the company's network doingthings, those logs continue to
get bigger and bigger.
That becomes a problem thatpeople can't solve.
Speaker 2 (12:10):
Yeah.
Speaker 4 (12:10):
You need to have AI
solutions to look through those
particular logs, that extremelyhigh volume of logs, to be able
to say we found something weird.
Maybe you should take a look atthis human or even maybe have
some automated interactions froman AI solution to say we found
this thing weird.
We know it's always bad AI,just go ahead and fix it.
Speaker 2 (12:31):
So, with AI working
for a company, how important is
it to collaborate, communicatewith all levels of the company
when things, how things shouldbe done and when they should be
done?
Speaker 4 (12:45):
It's probably the
most important thing about using
AI in a company Because, like Imentioned before, we want to be
an enabler, and the way we cando that is by communicate openly
and honestly about the risksinvolved with using AI, the
things that we think are thebest ways to use AI, and also
really kind of defining what AImeans.
So when I say the word AI, thatcould mean something different
(13:07):
to me than it may mean to you,so we need to normalize that
term within our organization sothat we know we're speaking the
same thing.
Speaker 2 (13:16):
I may be thinking my
mid-journey little elephant that
I created, that's blue.
Speaker 4 (13:19):
Right, you may be
thinking I went on Bing and I
had it generate an image for meand this is what I understand of
AI.
I could be thinking of anin-depth machine learning deep
learning solution that islooking through mountains of
data and correlating andcreating a data picture, data
analytic picture for us.
Speaker 2 (13:40):
Yeah.
Speaker 4 (13:40):
So we want to make
sure we have those conversations
to understand that we'respeaking the same language and
then how can we use that tobetter enable our business and
be more efficient and and worktogether collaboratively?
Speaker 2 (13:54):
so as on a security
level, what do you see next as
far as uh responsible ai?
Speaker 4 (14:03):
um.
So one of the things we need toget better at and we mentioned
this a little bit earlier todayon another talk was the concept
of deepfakes is out there.
They're being used by bad guys.
What we need to be able to dobetter and be more responsible
with the use of AI is how do wevalidate the identity of the
(14:26):
person that we got the emailfrom that we're on the video
phone call with?
How do we validate thatidentity?
How do we make sure that thedata that they're accessing
within the AI solution isappropriate data, that we're not
exposing too much of ourconsumers' data or our
customers' data or our ownemployees' data to bad actors
(14:47):
within our AI solution, and howcan we make sure that we're
using it in an efficient mannerrather than just to say we're
plugging AI into our solution?
Those are really kind of thebig things, I think when we talk
about responsible use of AI.
Hopefully that makes sense.
Speaker 2 (15:06):
Yeah, totally.
As you walk around the ColumbusAI Week and you're talking to
different people, what's yourtake on the general
understanding of AI andcybersecurity issues?
Speaker 4 (15:19):
I think we're getting
there.
I think we need to have morecollaborative events like this
and continue to have thoseconversations.
Um, I think a lot of peopleunderstand some of the risks
involved with using an AIsolution, but they may not
understand how to address therisks, how to proper,
appropriately handle theproblems that we may face with
(15:39):
AI.
I also am not certain yet ifwe're thinking forward enough.
Um, right now, our focus is AIis cool, let's put it in
everything.
Um, what does that mean forfive years down the road?
I think we need to also havethose conversations from a risk
(16:00):
perspective.
What are the risks involvedwith having AI in our solution
now that may come up in fiveyears?
It's hard to think of that farforward sometimes, especially in
today's day and age, but Ithink we really need to think
about that.
And then, honestly, you reallyneed to extend that conversation
into what happens when we getinto pervasive quantum computing
.
Extend that conversation intowhat happens when we get into
(16:21):
pervasive quantum computing.
Yeah, yeah, quantum computingis going to be something that
every company is going to have,probably 10 years.
I don't know, that's a spitballand what is it.
So quantum computing is the useof a system that is based on
quantum mechanics.
Instead of using two bits, ituses quantum bits or qubits.
Instead of using two bits, ituses quantum bits or qubits, and
(16:55):
so, instead of it being eithera one or zero, it expands that
math that is capable of acomputer system into a much
larger base, which allows forthe computations to happen way
faster than they can happentoday, and in some places they
go into a quantum state, whichalmost seems like the answer
happens before the question iseven asked, because quantum
physics is weird and I don'tunderstand all of it.
But that's essentially myunderstanding of quantum
computing, and so the math thatwe're able to do with computers
today, especially withcryptography, is very
(17:17):
complicated and long and hardfor the computers to do.
So if we're using somethinglike a SHA-256 encryption code
to encrypt some data, a key toencrypt some data, that key
can't be cracked with today'scomputing power for something
like 40 or 50 years.
If you just try to brute forceit and run through all the
(17:37):
potential calculations that itcould be when we go into the
quantum realm, that could beminutes or seconds.
Wow, because of the exponentialincrease in the capability of
the mathematical calculationsthe system can do and that opens
up.
So extrapolate that to the wayyour computer boots up today.
You open up Word and you typesome stuff into Word.
(17:59):
You go on the internet and loadfacebook.
All of that stuff will happenfaster than you could even guess
that it would happen.
It would boot up immediately.
With today's software, softwarehas to be changed in order to
match quantum computing, becausewe we code based on a yes or a
no, a one or a zero.
But as we get to that state, aiis going to be able to think
(18:21):
faster than probably even we canon much larger data sets, and
so we need to think about howwe're going to control the AI
system to keep from getting toocrazy.
I'm not talking like self-awareor anything like that, I mean.
But how do we put guardrailsaround those solutions to make
(18:43):
sure that they don't go off totoo many different directions?
How do we keep it fromgenerating data so quickly that
it starts to go back through itsown data and then the data gets
worse and worse and worse everytime we go through those copies
of data?
That's already a problem todaywith some AI solutions, but that
would be even more enhancedwith quantum computing.
(19:04):
That's a big conversation again.
Speaker 2 (19:07):
10, 15 years down the
road We'll get back with you on
10 years.
We need to think about that.
Speaker 4 (19:11):
The good news is that
NIST has come out with
post-quantum cryptographystandards already.
Who has NIST, the NationalInstitute of Standards
Technology?
Oh, okay, it's a governmentorganization that handles a lot
of standards around, especiallycomputing.
They have a lot of securitystandards, so it's something
that I talk about all the time.
They have come out withpost-quantum cryptography
standards already, which is veryhelpful for us to think about
(19:34):
how we encrypt things todayversus how we're going to
encrypt them tomorrow.
Speaker 2 (19:39):
Did they do that for
AI ahead of time?
Speaker 4 (19:41):
They do have an AI
risk management framework that
they've created.
They've got a couple other AIpolicies out there that we could
leverage.
The AI risk managementframework is version one and is
a very early version one.
I think there's a lot more workthey could do with it, but at
least they're doing something.
Speaker 2 (19:57):
Yeah, sure, which is
fantastic.
Yeah Well, ryan, I want tothank you so much for joining us
.
Sure, enlightening us on a lotof stuff that now my mind is
blowing.
We'll talk again.
Speaker 4 (20:07):
Yeah, absolutely.
Thanks so much for having me, Iappreciate it.
Speaker 1 (20:12):
We hope you enjoyed
this episode of AI Evolution.
If you're as fascinated withthe capabilities and
possibilities of AI as we are,Don't forget to subscribe on our
podcast on your favoritestreaming site to hear more
conversations with the brightestminds in the field.
If you have any topics you'dlike us to explore in future
episodes, please reach out to usat our website, aievolutionlife
.
We'd love to hear from you.
(20:33):
Until next time, keep yourcuriosity alive and remember the
future of AI is just a podcastaway.