Automation is moving from APIs to full “computer use,” where agents click through screens like a human. That power is transforming evidence collection, access reviews, and repetitive security tasks, but it also raises new risk. In everyday workflows, the safest gains often start with read-only actions, sandboxes, and clear opt-in for anything that writes changes. Do your tools know when an access request is an anomaly? Can you keep humans in the loop with fast review-and-approve steps? And if an agent can browse your systems, how do you stop data from walking out the door before customers or attackers notice?
Jeremy Epling is Chief Product Officer at Vanta, where he leads product strategy and execution for the company’s trust management platform. He focuses on helping organizations automate security and compliance, enabling them to build and scale with confidence.
Previously, he was VP of Product at GitHub, overseeing Actions, Codespaces, npm, and Packages—core components of the modern developer workflow used by millions worldwide. Before GitHub, Jeremy spent more than 16 years at Microsoft, leading product teams across Azure DevOps Pipelines and Repos, OneDrive, Outlook, Windows, and Internet Explorer. His work has centered on developer platforms, cloud infrastructure, and productivity tools at global scale.
In the episode, Richie and Jeremy Epling explore AI-driven security risks, vendor data use and trade-secret leakage, governance and access controls, compliance beyond audits, how agents automate security questionnaires and vendor reviews, how to ship faster safely, human-in-the-loop design, and “computer use” automation, and much more.
Links Mentioned in the Show:
New to DataCamp?