
Recap: Our Executive Roundtable with KnowBe4, featuring Dr. Kawin, CISO Advisor at KnowBe4
July 7th, 2026 – Here’s the uncomfortable part about AI and security right now — it’s not just the thing attacking you anymore. It might also be the thing working inside your company. That’s the tension we sat with at The Trust Deficit, the roundtable we hosted with KnowBe4.
We had CISOs, IT directors, and security leaders from a mix of industries in the room — and we brought in Dr. Kawin, KnowBe4’s CISO Advisor, to sit with them and answer questions directly. No script, no filtered Q&A. Just a room full of people asking the things they actually deal with, and someone with the experience to answer straight.
That’s honestly what made the session work. Not the slides — the fact that people got real answers from someone who’s been on the other side of these problems.
Here is a summary of the most significant questions raised by participants.
- Whose job is human risk, really? How involved should boards and senior management be, versus leaving it all to the security team?
- Are AI agents “employees” now? If a bot has access and permissions inside your systems, does it need its own security training the way a person would?
- What actually proves training is working? Not just completion rates — real KPIs that show behaviour is changing.
- The generation problem. A lot of security awareness content is still built with an “old school” mindset, but the people walking into the workforce now are Gen Alpha. How do you talk to both without losing either?
- Deepfakes on real calls. Voice cloning and video deepfakes are good enough now to fool people on a live call. What actually helps you catch it in the moment?
- Content at scale, without losing the plot. Tools can generate phishing simulations in seconds — but how do you keep that relevant when your audience spans a region as culturally different as APJ?
- “We’re too small to matter.” Someone asked if this is still true in the AI era. Dr. Kawin’s answer: not really. AI has made it cheap to run a convincing attack, so size isn’t the shield it used to be.
What stuck with us!
If there was one thing Dr. Kawin kept coming back to, it’s this: security awareness can’t be a once-a-year checkbox anymore. AI has made the gap between “sounds legit” and “actual incident” much smaller than it used to be. The organisations that’ll be fine are the ones treating human risk the same way they treat any other risk on the board’s radar — tracked, discussed, and updated as things change.
Having someone like Dr. Kawin in the room, who advises organisations on exactly this, is what turned the session from a talk into a working conversation.
Thank you.
To everyone who showed up and asked the hard questions — genuinely, thank you. Sessions like this are only as good as the room, and this one delivered.
And a big thank you to Dr. Kawin and the team at KnowBe4 for making the session what it was.
Got something from this that’s got you thinking about your own setup? Reach out to our team at enquiry@internetnow.com.my or chat with us directly via WhatsApp at (+6016-2620 853) — happy to talk it through. practical, hands-on work with public sector teams who are serious about protecting the information they handle.







