Award-Winning Innovator, Technologist & Disruptor in Artificial Intelligence, Mixed Reality & Blockchain
Joined February 2011
- Tweets 1,490
- Following 7,049
- Followers 6,832
- Likes 606
311 Photos and videos
Pinned Tweet
As #AI models become more powerful, they also present growing cyber security risks - therefore I’m excited to share that I’ve joined Cyber Realm Solutions as an #AI #Consultant to support their initiatives.
National Law Review Coverage - natlawreview.com/press-relea…
1
2
36
Veeam patched a critical 9.4 RCE yesterday — a low-privilege domain user could run code on the backup servers 82% of the Fortune 500 depend on to recover.
Backup is the last line of defense for critical infrastructure. It's also where AI quietly cuts corners.
1
2
45
Three questions for energy / nuclear / industrial operators:
Where does your AI actually run?
Can it recover air-gapped, mid-incident?
Who can reach it — "authenticated domain user" is not a small blast radius in OT.
Least privilege has to be architectural.
1
1
40
Production-grade AI for regulated infra isn't the biggest model — it's controllability, observability, and recovery you can prove under inspection.
AirNode.ai
#Cybersecurity #AI #RiskManagement #DigitalTransformation #EnterpriseAI
27
"Air-gapped" has become the most misused word in OT security. New OT data this month: transient-device attacks — laptops, USBs, vendor workstations crossing the gap — are up 221%, now 1 in 4 operational-technology incidents.
1
51
The lesson isn't that isolation failed — it's that isolation alone was never the control. For energy, nuclear & industrial operators: architecture over disconnection, govern what crosses the boundary, prove what the model did. Without those, the air gap is theater.
1
45
Sovereign air-gapped AI isn't about keeping AI offline — it's keeping capability and control in the same hands. Coverage on my Cyber Realm AI Consultant role: AP News. AirNode.ai #ArtificialIntelligence #Cybersecurity #CriticalInfrastructure #AI #Innovation
45
Thank you #Crunchbase for currently ranking me among the Top 100 #CEOs globally! It's an honor to be recognized for my work with #integrated #technologies - #AI, #Blockchain & #Mixed #Reality
JonathanMHerman.com
#ArtificialIntelligence #Tokenization #AR #XR
1
18
The White House just signed an EO pushing AI labs to give the government early access to their most powerful models — plus a federal clearinghouse to scan critical infrastructure for vulnerabilities.
A real step. But it raises a harder question for operators 👇
1
1
43
The most sensitive systems — nuclear, grid OT, water, defense — can't connect production networks to a cloud AI API. By architecture and by rule.
Defensive AI only counts if it runs where the threat is. For air-gapped environments, that means on-prem. Sovereign by design.
1
49
Sovereign AI = who owns the weights, where inference runs, what data leaves the perimeter.
Secure AI's next wave is the model you can run inside your own walls.
AirNode.ai
#ArtificialIntelligence #Cybersecurity #CriticalInfrastructure #AI #Innovation
24
OpenAI just confirmed two developer machines compromised in a supply-chain attack this week. Reminder: cloud AI means your threat model now includes the provider's pipeline, their dependencies, and their incident timeline — not just yours.
1
74
For regulated operators (energy, water, nuclear, finance, healthcare) ask 3 things: Where does inference run? What's in the upstream supply chain you can't see or patch? What happens to YOU when the provider has a bad day? If you can't answer, you don't control your AI.
1
54
Secure local AI flips the default — model inside your boundary, data never leaves, the audit line is yours. The question isn't whether to adopt AI. It's where it runs. AirNode.ai #Cybersecurity #AI #RiskManagement #DigitalTransformation #EnterpriseAI
1
1
44
Two stories from the last 10 days tell critical-infrastructure operators everything about the gap between regulation and reality.
May 21: White House pulled the AI cybersecurity EO.
May 12: Dragos published the first AI-assisted attack postmortem. Water utility. Claude GPT recon
1
68
Operator takeaway:
1) Federal benchmark on hold. The threat that motivated it isn't.
2) AI-assisted recon on regulated networks no longer needs a nation-state. Commercial LLMs lower the floor.
3) Air-gapped inference segmentation are now preconditions, not hedges.
1
34
If your AI roadmap doesn't account for both the policy gap and the new attacker capability, it's time to talk.
AirNode.ai
#Cybersecurity #AI #RiskManagement#DigitalTransformation #EnterpriseAI
#Cybersecurity #AI #RiskManagement #DigitalTransformation #EnterpriseAI
29
IAEA closed CyberCon26 Friday launched a Coordinated Research Project on computer security for AI in regulated environments. When the world's most exacting safety regulator decides AI needs its own security framework, every regulated industry should be reading the same memo.
1
1
26
New Kiteworks forecast: 91% of energy orgs lack network isolation for AI. 59% don't encrypt training data. 51% still run manual incident response. Same picture in healthcare, finance, government. Not an AI maturity gap — a perimeter problem with AI poured into it.
1
25
Air-gapped AI = weights local, inference local, data never leaves the boundary, model under change control. Most "private AI" fails every test, regardless of sector. If you can't air-gap it, you can't audit it. AirNode.ai
17