In this episode, we sit down with Kane Narraway to unpack how enterprise security is changing as AI, platforms, and developer-driven security become the norm. Kane shares his path from digital forensics to leading security at Canva, and why understanding company culture matters just as much as choosing the right tools.
We discuss why modern security is becoming platform-first, why much of the security vendor market optimizes for finding problems rather than fixing them, and why Kane believes security teams need more engineers and fewer manual processes.
The conversation also digs into AI security, shadow IT (and shadow AI), and the real-world trade-offs between usability and control, especially as low-code and no-code tools become more common inside companies.
00:00–03:25 — Kane’s journey from law enforcement to platform security, shaped by our time at Atlassian
03:25–06:37 — Why enterprise security becomes platform-first faster than AppSec
06:37–09:26 — Why security teams fail when they fight company culture
09:26–13:36 — Platforms vs best-of-breed tools: trade-offs, not ideology
13:36–17:45 — Why most security startups are built to be acquired
17:45–22:16 — Open source agents, and business-specific vulnerability research
22:16–27:09 — AI security, prompt injection, and the access-control problem
27:09–31:29 — Build vs buy in the AI era. Speed is easy, and why maintenance remains the real bottleneck.
31:29–40:42 — Agents, MCPs, and why stopgap solutions dominate today
40:42–48:57 — Shadow AI, low-code automation, and familiar security failures
Tune in for a deep dive!
Connect with Kane Narraway:
LinkedIn: https://www.linkedin.com/in/kane-n/
Blog: https://kanenarraway.com/
Connect with Anshuman:
LinkedIn: anshumanbhartiya
X: https://x.com/anshuman_bh
Website: https://anshumanbhartiya.com/
Instagram: anshuman.bhartiya
Connect with Sandesh:
LinkedIn: anandsandesh
X: https://x.com/JubbaOnJeans
