AI is artificial. You are the intelligence.
AI can write, summarize, and ship a recommendation before you've finished reading the prompt. What it can’t (or shouldn’t) do is own the decision. In this episode of Risk Grustlers, Teri Green-Manson (VP of Technology at Elevate) sits down with Nicholas Muy (CISO and VP of Engineering at Scrut Automation) to work through what AI adoption actually demands of security and technology leaders. Nobody's debating whether teams will use AI anymore. They already are. The question Teri keeps coming back to is a harder one: are you asking the right things before you trust the output, approve the tool, or push it to production?


Description
Confidence in AI is running high right now. Some of it is earned. Most of it hasn't been tested yet.
Teri and Nick get into the practical side of that gap: how to move a stalled AI conversation into a real review, what to ask when an output sounds certain but shows no proof, and how to keep teams shipping without turning governance into a speed bump.
Teri walks through her TEST framework, the four questions she runs any AI system through before she’ll trust it: what does it touch, what evidence backs the output, where does the data go, and what would it actually take to rely on it?
If your team wants to use AI without getting swept up in the hype or frozen by the fear, this one is worth listening to.
What listeners will take away?
- Turn open-ended AI debates into a short list of review criteria your team can actually use.
- Know what to ask before you trust an AI output, adopt a tool, or take a vendor claim at face value.
- See how governance can back innovation instead of rubber-stamping it or blocking it.
Quote from the Episode
"AI is very progressive, but you've got to figure out how you get in, where you fit in. You're not trying to outpace governance or innovation, not trying to slow down your organization, but you still have to be tactical."
— Teri Green-Manson, VP of Technology, Elevate
About the Risk Grustlers Podcast
Risk Grustlers is a podcast for people working in security, risk, and governance who want sharper conversations than the usual industry soundbites. Each episode features CISOs, security leaders, and risk practitioners sharing how they think through the real operational challenges behind cybersecurity, compliance, AI governance, and enterprise risk.
Hosted by Aayush Ghosh Choudhury (CEO and Co-founder of Scrut Automation) and Nicholas Muy (CISO at Scrut Automation), this podcast series focuses on practical lessons, hard-earned perspectives, and the nuance that comes only from years spent in the security and compliance space.























