UC Today

Agentic AI is moving from a promising productivity tool to a security problem that enterprise leaders can no longer ignore. In the conversation below, Kristian speaks with Irina Tsukerman, President at Scarab Rising; Shlomi Beer, Co-Founder & CEO at ImpersonAlly; and Roey Eliyahu, Co-Founder & CEO at Salt Security, about what agentic AI is, where the risks are emerging, and how organizations can manage systems designed to act on their behalf.
What makes the topic urgent is that agentic AI is not simply a chatbot with a smarter interface. These systems can make decisions, take actions, access data, and move across business systems with limited human oversight. That creates efficiency, but it also creates exposure, especially when companies are adopting the technology faster than they are building the controls around it.
Kristian frames the discussion around a simple but important question: how do you secure systems that are meant to behave autonomously when traditional security assumptions are no longer enough? The answer, as the guests make clear, is that the companies moving fastest on agentic AI are often the ones least prepared for its consequences.
Where The Security Risks Emerge
The first major theme in the conversation is that adoption is outpacing governance. Shlomi Beer says attackers do not always need to break through classic perimeter defenses; instead, they can manipulate external inputs, prompt chains, or other content that agents ingest and trust. In that environment, the attack surface is no longer just a network or an endpoint. It is the workflow itself.
Roey Eliyahu adds a broader operational view. He argues that consumer-facing sectors, where support volume is high and repetitive tasks are common, are adopting agents aggressively because the business case is compelling. But once an agent is expected to act like an employee, it also needs the permissions of an employee. That is where the security problem begins to scale.
Both guests point to the same underlying issue: the more useful the agent becomes, the more access it needs. And the more access it receives, the more dangerous it becomes if it is abused, hijacked, or allowed to make the wrong call. What begins as automation can quickly become a privilege problem, an observability problem, and a governance problem at the same time.
A second theme is that organizations often leave the rules unclear because the technology is moving faster than internal policy. Irina Tsukerman says some companies rush into deployment because they want competitive advantage, while others delay formal controls because they do not yet understand the risks well enough.
Why Governance Is Lagging
But the risks are not abstract. Irina points to predictable failure modes: an agent being hijacked, exposing customer information, or falling for a deepfake-style manipulation. Roey widens that lens by explaining that agents also create compliance exposure, especially in regulated sectors such as finance, insurance, and pharma. Even when the agent improves service, it still has access to sensitive data.
The discussion also shows why the current security market can feel fragmented. Vendors often sell point solutions for one layer of the stack, such as identity, the model, or the MCP layer, but the speakers argue that this rarely maps cleanly to the real business risk. The problem is not one isolated component. It is the chain linking agent, prompt, data, API, and downstream action.
The conversation turns to remedy, and here the emphasis is clear: start with visibility, then add guardrails, then add detection. Roey says readiness begins with full discovery and observability across agents, MCP servers, APIs, code, runtime, and configuration. Without that holistic view, security teams are trying to defend something they cannot fully see.
Once organizations understand the full chain, they can apply business-s

Host Kieran Devlin (UC Today) sits down with Mike Frayne, CEO at Voss, for the 2026 Big UC Update. They unpack what’s changed over the last 12 months—from AI adoption to platform consolidation—and why digital workplace management is becoming mission-critical as tool sprawl, data silos, and policy complexity accelerate.
Voss started in UC automation—but in this conversation, Mike Frayne explains how the company is widening the lens: bringing migration, automation, analytics, and telemetry data into a single platform that helps organizations manage not just UC, but the broader Microsoft ecosystem too.
AI is a major theme, but not as hype: Mike outlines why good AI depends on accurate, up-to-date telemetry, how Voss is building agents on top of that data, and why customers also need the freedom to build their own agents. The big watch-out? Agent governance—access control, policy compliance, duplication, adoption, and proving ROI—may be the next management frontier.
Key points we cover:
Voss’s shift to a unified platform (not siloed products) to unlock richer telemetry
Expanding beyond UC into Microsoft 365, security, auditing, and governance
AI enablement: internal acceleration + customer-facing agents built on trusted data
“Take back control” via discovery, hierarchy, RBAC, and spend/licence optimization

In this interview, UC Today's Kristian McCann sits down with Bob Pruett, Senior Solutions Architect at Myriad360, to tackle one of the most underappreciated security risks in modern business: data leakage through everyday collaboration tools. Most organisations have firewalls, permissions, and email controls in place — but nothing for the conversation happening right now in Teams, Zoom, Slack, and Google Chat? 

Data leakage isn't a new problem, but the way it happens in 2026 looks almost nothing like it did five years ago. 

Key Topics:
🔵 The real-time problem changes everything. Voice and chat can't be paused for inspection the way email can. If sensitive data is shared in a live call or instant message, it's gone before any traditional DLP tool can react — making prevention and policy far more important than detection after the fact.
🔵 Passwords and API keys are leaking through chat. One of the most common and overlooked risks Bob flags is credentials being shared in what employees assume are private conversations. Those messages are logged, searchable, and far more permanent than the post-it note people think they're replacing.
🔵 Your policies don't follow you across platforms. If you're on Zoom, Teams, Google Chat, and Slack in a single day, your security settings only apply to calls you initiate. The platform the other person starts controls the rules — including whether the call is transcribed, recorded, or shared.
🔵 Tools exist — most companies just haven't deployed them. Bob highlights Truffle Hog as a practical starting point for finding leaked secrets in chat logs, alongside built-in platform features that most organisations simply haven't switched on. The gap isn't tools — it's awareness and policy.

For more on UC security, compliance, and collaboration strategy, visit UC Today.

Join the UC Today LinkedIn community at linkedin.com/groups/9551264

Subscribe to the newsletter at uctoday.com/register to stay ahead of the risks shaping the industry.

Most enterprises have deployed Microsoft Teams Rooms and the core meeting experience is working. But beyond the meeting room sits a much larger opportunity, lobbies, huddle spaces, event venues, open collaboration areas, and most organisations are managing those with a disconnected patchwork of point solutions that wasn't designed to scale.
Marcus Law sits down with Vic Bhagat, Senior Director of Alliances at Q-SYS, to explore what a genuinely high-performance workplace requires, what changes when you connect every space type through a unified platform, and what Microsoft's decision to build Experience Center One on Q-SYS tells us about where enterprise AV is heading.
If you're responsible for a Teams Rooms estate and thinking about what comes next, this is the conversation to start with.

In this UC Today interview, host Kieran Devlin speaks with Volker Pfirsching, Partner and Head of Innovation Management (Europe) at Arthur D. Little. Together, they unpack a hard truth many CIOs are now confronting: the biggest barrier to digital transformation isn’t access to technology—it’s the way IT is organized.

If you’re navigating AI adoption, cross-functional delivery, and growing pressure to show outcomes (not activity), this conversation is worth your time. Digital transformation is accelerating—but many enterprises are still structured for a slower era. Volker Pfirsching explains why traditional IT silos create more coordination overhead than value, and what CIOs can do to shift from “service provider” to orchestrator of outcomes across internal teams and external partners.

Key takeaways include:

How siloed IT creates friction through handovers, delays, and misaligned priorities in end-to-end digital journeys

What the hybrid network model looks like day-to-day, with business and IT fused into true product-centric teams

How leading CIOs balance autonomy with enterprise guardrails to avoid an “IT Wild West” (security, architecture, governance)

Why operating model change fails without culture change—and how to align incentives, roles, and leadership routines