From Months to Minutes: Mythos and AI’s Impact on Enterprise Cyber Risk

From Months to Minutes: Mythos and AI’s Impact on Enterprise Cyber Risk

May 27 | 2:00 PM | Virtual

In April, Anthropic disclosed Claude Mythos — a frontier AI model that has autonomously discovered thousands of previously unknown software vulnerabilities, including a 27-year-old flaw in one of the world's most security-hardened operating systems — and launched Project Glasswing, a coalition with AWS, Apple, Google, Microsoft, JPMorgan Chase, CrowdStrike, Palo Alto Networks, and others to put these capabilities in defenders' hands first. The implications for directors are immediate: the window between vulnerability disclosure and working exploit has collapsed from months to minutes, and adversaries will reach the same capabilities on a timeline measured in months. 

Join us for an impromptu and timely virtual discussion that will focus on what boards need to understand, the assumptions in our enterprise risk registers that no longer hold, and the specific questions every director should be asking management at the next board meeting. This discussion is applicable across industries and company sizes.

Mythos & AI: Meet the Panel

Ryan P. McCarthy: Managing Director, Cyber & Business Resilience at Protiviti

Managing Director in Protiviti's Technology Consulting Security & Privacy practice with more than 20 years of cybersecurity experience. Recently, he has led Protiviti's CIO/CISO point of view on Mythos and the rise of agentic AI threats, authoring board- and C-suite-level perspectives on how autonomous AI is compressing discovery-to-exploitation timelines.

Mike Monday: Managing Director, Cyber & Business Resilience at Protiviti

Managing Director in Protiviti's Technology Consulting Security & Privacy practice with more than 20 years of cybersecurity and technology leadership experience. Recently, he has led client conversations with major financial institutions on AI security and third-party cyber risk, advising on how organizations must accelerate vulnerability management, virtual patching, and resilience practices in light of frontier-model threats like Mythos.

Andrew Retrum: Global Lead, Cyber & Business Resilience at Protiviti

Managing Director in Protiviti's Technology Consulting Technology Risk & Resilience practice with more than 20 years of cyber and technology risk experience and serves as Protiviti's primary liaison to financial sector associations on cyber and resilience matters. Recently, he has led Protiviti's response to Mythos — authoring the executive board briefing on Mythos's impact on cybersecurity and pairing more than a decade of cyber risk quantification leadership with current perspectives on how agentic AI is reshaping the cyber threat landscape.

Tom Wilson: Director, NN Inc, and Jack Henry & Associates

Tom Wilson serves as board member for Jack Henry & Associates (Nasdaq: JKHY), an S&P 500 financial technology company providing technology solutions to the financial services industry, where he serves as chair of the audit committee and a member of the compensation committee. As a technology provider to the banking industry, the Jack Henry audit committee oversees regulation by the federal banking agencies (Office of the Comptroller of the Currency, Federal Deposit Insurance Corp., and the Federal Reserve) and the issuance of over 30 SOC reports. He also serves as a board member for NN Inc. (Nasdaq: NNBR), a diversified industrial manufacturing company where he serves as chair of the audit committee and a member of the governance committee. As a public company director, he has been involved in CEO transitions, independent auditor and compensation consultant selections, financial restatements, remediation of material weaknesses, restructuring of long-term incentive plans, cybersecurity oversight, development of board evaluation processes, issuance of sustainability reports, numerous acquisitions and divestitures, and interactions with activist investors.

Don't miss this timely discussion.