logo
episode-header-image
Sep 22
1h 30m

The AI PM's Guide to Security - with Okt...

Aakash Gupta
About this episode

Today's Episode

Here's what's happening right now:

Someone can clone your voice from a few YouTube videos and call your help desk pretending to be you.

AI can build a perfect fake of your login page in minutes.

This isn't some distant future threat. Jack Hirsch, VP of Product at Okta, sees this happening every day. Okta protects millions of logins and Jack has a front-row seat to how AI is completely changing cyber attacks.

And the scary part is most PMs have no idea this is happening to their products.

That's why I brought Jack on the show. He breaks down what's really happening and what you need to know as someone building products in the AI era.

----

Brought to you by:

* Amplitude: The market-leader in product analytics

* The AI Evals Course for PMs: Get $1155 off with code ‘ag-evals’

* The AI PM Certificate: The #1 AI PM certificate

* Kameleoon: Leading AI experimentation platform

----

Key Takeaways

1. Identity is Everything: Over 80% of breaches stem from identity attacks, not device or network vulnerabilities. You cannot get security right without getting identity right - this is the new reality.

2. DPRK Infiltration Operations: North Korean agents are passing full interview processes, getting hired, having laptops shipped to device farms, and operating as inside threats within major organizations.

3. AI Agents = Security Blindspot: Companies deploy AI agents en masse without treating them as identities requiring access management. JP Morgan's CISO called this out as the biggest current threat vector.

4. Help Desk Social Engineering: Attackers use AI voice cloning and deepfakes to impersonate employees calling help desk for password resets, MFA bypasses, and account access - often successfully.

5. Session Security Over Time: Authentication degrades after login. Okta focuses on continuous session monitoring and risk signal sharing between security vendors rather than constant MFA prompts.

6. T-Shaped Identity Strategy: Deep identity security (phishing-resistant auth, lifecycle management, risk sharing) plus broad integration across all enterprise systems - not just SSO and MFA.

7. Cross-App Access Standard: New OAuth standard allows AI agents to inherit user permissions across enterprise apps without individual OAuth dances for thousands of employees.

8. Essential vs Discretionary AI: Essential AI (bot detection, fraud prevention) stays always-on. Discretionary AI (log summaries, access reviews) gives customers opt-out control for compliance.

9. AI Product Principles: Accelerate don't abdicate, solve real problems before prototyping, ignore AI hype cycle. Use AI as thought partner, not replacement for product judgment and domain expertise.

10. Personal Security Stack: Lock credit reports immediately, use password manager with unique passwords, enable passkeys everywhere, lock phone number with carrier PIN to prevent SIM swapping attacks.

----

Related Content

Podcasts:

How to Get a Product Leadership Job

How He Became a Series C VP of Product in 10 Years

“Product Management isn’t going to exist in 5 years” - 2x CPO

Newsletters:

The Product Leadership Job Search

The Product Leader’s Ultimate Guide to Process Changes

Product Leadership Interviews (GPM, Director, VP): How to Succeed

----

P.S. More than 85% of you aren't subscribed yet. If you can subscribe on YouTube, follow on Apple & Spotify, my commitment to you is that we'll continue making this content better.

----

If you want to advertise, email productgrowthppp at gmail.



This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit www.news.aakashg.com/subscribe
Up next
Oct 7
Crash Course in AI Product Design from Google Search + Maps Designer, Elizabeth Laraki
Today’s EpisodeEveryone’s building AI products wrong.They’re sprinkling AI on top like fairy dust. Adding chat interfaces to everything. Ignoring 70 years of design principles.Elizabeth Laraki was one of 4 designers on Google Search in 2006. One of 2 designers on Google Maps in 2 ... Show More
1h 12m
Oct 4
The Claude Code Tutorial for AI PMs: Why You Need to Use It + How
Today’s EpisodeClaude Code hit $500 million ARR in four months.Two product managers. Zero marketing dollars. Just pure viral growth.While some PMs are still copying and pasting into ChatGPT, others are orchestrating multiple AI agents that work in parallel, automatically reading ... Show More
1h 37m
Sep 27
The AI PM’s Guide to Building AI Agents, with Warp CEO Zach Lloyd
Today’s EpisodeAs an AI PM, you’re probably tired of building AI Agents and don’t know how to monetize them.But what if I told you there’s a company adding $1 million ARR every 10 days with their AI agent?Zach Lloyd, CEO of Warp and former Google engineering leader, cracked the c ... Show More
39m 25s
Recommended Episodes
Nov 2024
Becoming an AI PM | Aman Khan (Arize AI, ex-Spotify, Apple, Cruise)
Aman Khan is Director of Product at Arize AI, an observability company for AI engineers at companies like Uber, Instacart, and Discord. Previously he was an AI Product Manager at Spotify on the ML Platform team, enabling hundreds of engineers to build and ship products across the ... Show More
1h 17m
Sep 7
How AI is reshaping the product role | Oji and Ezinne Udezue
Ezinne and Oji Udezue have over 50 years of combined product leadership experience at Microsoft, Twitter, Atlassian, WP Engine, Typeform, and Calendly. They’ve witnessed every major shift in product management, and, despite their seniority, they’re taking beginner AI courses and ... Show More
1h 18m
Jul 8
How I'm Building a Zero-Employee Business with AI
Want to Automate your work with AI? Get the playbook here: https://clickhubspot.com/wgk Episode 66: Can you really build a zero-employee business with AI? Nathan Lands (https://x.com/NathanLands) sits down with John Rush (https://x.com/johnrushx), founder and self-proclaimed buil ... Show More
46 m
Aug 28
How 80,000 companies build with AI: products as organisms, the death of org charts, and why agents will outnumber employees by 2026 | Asha Sharma (CVP of AI Platform at Microsoft)
Asha Sharma leads AI product strategy at Microsoft, where she works with thousands of companies building AI products and has unique visibility into what’s working (and what’s not) across more than 15,000 startups and enterprises. Before Microsoft, Asha was COO at Instacart, and V ... Show More
57m 11s
Aug 31
How we restructured Airtable’s entire org for AI | Howie Liu (co-founder and CEO)
Howie Liu is the co-founder and CEO of Airtable, the no-code platform valued at around $12 billion. After a viral tweet declared “Airtable is dead” based on incorrect data, Howie led a radical transformation: reorganizing the entire company around AI, becoming an “IC CEO” who cod ... Show More
1h 40m
Jul 31
He saved OpenAI, invented the “Like” button, and built Google Maps: Bret Taylor on the future of careers, coding, agents, and more
Bret Taylor’s legendary career includes being CTO of Meta, co-CEO of Salesforce, chairman of the board at OpenAI (yes, during that drama), co-creating both Google Maps and the Like button, and founding three companies. Today he’s the founder and CEO of Sierra, an AI agent company ... Show More
1h 28m
Sep 21
From managing people to managing AI: The leadership skills everyone needs now | Julie Zhuo (Facebook VP, Sundial CEO, The Making of a Manager author)
Julie Zhuo is the former VP and Head of Design at Facebook (now Meta), author of the bestselling book The Making of a Manager, and co-founder of Sundial, an AI-powered data analysis company. Also, my first-ever podcast guest over 3 years ago!In our conversation, we discuss:1. The ... Show More
1h 36m
Jul 6
Solo founder, $80M exit, 6 months: The Base44 bootstrapped startup success story | Maor Shlomo
Maor Shlomo is the founder of Base44, an AI-powered app builder that he bootstrapped to an over $80 million acquisition by Wix in just six months. As a solo founder (with severe ADHD), he hit $1 million ARR just three weeks after launch and grew the product to more than 400,000 u ... Show More
1h 31m
Mar 2025
How to win in the AI era: Ship a feature every week, embrace technical debt, ruthlessly cut scope, and create magic your competitors can't copy | Gaurav Misra (CEO and co-founder of Captions)
Gaurav Misra is the co-founder and CEO of Captions, an AI-powered video creation company and one of the most successful consumer AI products in the world today. Previously he was a product leader at Snap, where he created the design engineering function and spent years helping de ... Show More
1h 25m
Jul 17
The AI-native startup: 5 products, 7-figure revenue, 100% AI-written code | Dan Shipper (co-founder/CEO of Every)
Dan Shipper is the co-founder and CEO of Every. With just 15 people, Every publishes a daily AI newsletter, ships multiple AI products, and operates a million-dollar-a-year consulting arm—all while their engineers write virtually zero code. It’s the most radical example of AI-fir ... Show More
1h 34m
Listen to millions of songs and podcasts on Anghami