Inference session · matthewhonea.com

Security leadership for the AI-native enterprise.

Matthew Honea is a CISO and writer operating where artificial intelligence meets the enterprise. Query the model below.

session://honea-2026 temp 0.2 · streaming

prompt › who are you, and what do you work on?

honea I am Matthew Honea, an AI-native security leader. I am the CISO at Hippocratic AI, a healthcare AI company focused on patient care and safety, and an advisor to Cygnvs and iHealthLabs. My work spans enterprise security, AI safety, software supply chain integrity, and the quantification of individual and aggregated cyber risk. Pick a query to keep going.

›

01 / model card

Human Model Card

spec sheet · build 2026

honea-2026 arch: security-leadership context: enterprise + AI status: available

Role: CISO, Hippocratic AI
Advisory: Tailscale · CloudFence · Fable · Cygnvs · iHealth Labs · Silicon Valley Japan Platform
Capital: Greylock Partners CxO Advisor · Glilot Capital Venture Advisor · YL Ventures Venture Advisor · angel investor, 5 security companies
Focus: Enterprise security, AI safety, cyber risk quantification
Sectors: AI, healthcare, insurance, finance, media, government
Outputs: 36+ published articles and whitepapers
Recognition: 40 Under 40, Silicon Valley Business Journal

// human voice

Security professional and industry speaker. My experience spans media, finance, insurance, and government, with emphasis on software products, data science, and enterprise security.

I work directly with customers, vendors, and partners to ensure success, and I write about quantifying individual and aggregated cyber risk for public and private organizations.

In 2019, recognized as one of the most influential young people in Silicon Valley business and named to 40 Under 40.

// capabilities

+ Enterprise security + AI safety & security + Cyber risk quantification + Software supply chain + Incident response + Federal compliance + Data science + Security team building

02 / outputs

Writing & Publications

generated artifacts · reverse chronological

// published & cited by

2025.01

Security WeekTrolley Problem: Safety Versus Security of Generative AI →

2024.10

Security WeekBack to the Future: Securing Generative AI →

2024.08

Security WeekSecure by Default: What It Means for the Modern Enterprise →

2024.07

Federal TimesNavigating Federal Cybersecurity: Strategies for Compliance →

2024.01

Security WeekContinuity in Chaos: Applying Time-Tested Incident Response →

2023.11

Security WeekNarrowing the Focus of AI in Security →

2023.10

Compliance WeekHow to Prepare for and Prove Network Compliance →

2023.09

Security WeekFinding Your Way in Cloud Security →

2023.08

Security WeekSecuring Email Servers to Protect Corporate Infrastructure →

2023.07

Security WeekVerifying Software Integrity with Sigstore →

2023.06

Security WeekFinding the Golden Container Ship →

2023.06

Cyber Defense MagazineRevisiting and Budgeting Your Network Security Architecture →

2023.05

Security WeekUnpacking the SBOM Bombshell →

2023.03

Forward NetworksJoining Forward Networks to Build Security into Networks →

2022.12

The CISO SeriesWhat Is the Best Way to Gauge a Company's Cyber Health →

2022.02

SmartNews CareersWhat It Takes to Build a World-Class Security Team webinar→

2020.12

Insurance TimesHow Cryptojacking Affects Insurers' Bottom Line →

2020.10

Dark ReadingCryptojacking: The Unseen Threat →

2019.10

AonSilent Cyber Scenario: Opening the Flood Gates whitepaper→

2019.10

IASALost in the Cyber Data Breach Noise →

2019.06

Tech RepublicWhy Data Breaches Keep Happening →

2019.05

Risk ManagementThe Case for Uniform Data Breach Reporting →

2019.04

Dark ReadingEnsuring the Bounty Isn't on White Hat Hackers' Heads →

2019.03

Risk & InsuranceAs Cyber Crime Intensifies, Focus on Critical Exposures →

2019.03

GuidewireWhen Secure Shell Becomes Less Than Secure →

2018.12

GuidewireThe Curious Case of Hacker Bug Bounties →

2018.11

Canadian UnderwriterThe Flood Risk That Might Be Unaccounted For →

2018.05

PropertyCasualty360We Can't Fix All the New Vulnerabilities, So Let's Fix the System →

2018.01

Dark ReadingCyber Insurance Builds for Business →

2017.12

Help Net SecurityRethinking Corporate Risk Practices in the Age of Cyber →

2017.12

VM BlogA Shifting (and Smarter) Approach to Cyber Risk →

2017.10

Tech TargetRecent Ransomware Attacks: Epidemic or Overblown? →

2017.10

Insurance JournalWhy Mandating Cyber Reporting and Basic Coverage Is Right →

2017.08

ReutersCorporate Profits to Take More Hits from Ukraine Cyber Attack →

2017.07

Lloyd's of LondonTwo Scenarios to Quantify Cyber-Risk Aggregation whitepaper→

2017.04

MIT Tech ReviewInsurers Scramble to Put a Price on a Cyber Catastrophe →

03 / evaluations

Interviews & Invited Talks

eval runs · panels, podcasts, keynotes

run · keynote

SWISH GIST 24

Practical security applications for attack surface management using digital twin technology.

More info →

run · session

Security Field Day

A sponsored session with specialists worldwide on finding and fixing network device vulnerabilities.

Watch online →

run · webinar

BrightTALK Webinar

Using network modeling and digital twins to uncover blind spots and isolate compromised devices.

Watch online →

run · headlines

CISO Series

Reviewing cybersecurity headlines: new attack methods, technology shifts, and legal rulings.

Watch online →

run · benkyokai

US Japan Council

Invited to speak at the monthly Benkyokai on the top cyber threats facing US and Japanese businesses.

Watch online →

run · panel

The Security Summit

Predictions on regulating crypto payments, hacking back, and cyber-insurance market disruption.

Watch online →

run · podcast

Security Conversations

On Ryan Naraine's podcast, discussing cyber insurance and a career across the security industry.

Listen online →

run · conference

Silicon Valley Japan Project

Invited cybersecurity speaker at the annual executive and technology gathering in San Francisco.

More info →

run · panel

National Cybersecurity Alliance

Joined a panel of experts on cyber insurance and risk for this public-private partnership.

Watch online →

run · lecture

Haas Business @ UC Berkeley

Lecturing global executives on cyber insurance, cyber risk, and modeling for capital allocation.

More info →

run · talk

Norcal Group Connect

On the rising risk healthcare providers face around the data they hold and the services they run.

More info →

run · webcast

Cyber Risks of the IoT

How internet-connected devices act as entry and persistence points for attackers in corporate networks.

Watch online →

run · webcast

Mitigating Systemic Cyber Risk

How insurers stay ahead of attackers, with a panel of insurance industry leaders.

Watch online →

run · summit

NetDiligence Cyber Risk Summit

On bug bounty and vulnerability disclosure, with Deborah Chang (HackerOne) and John Farley (Gallagher).

More info →

run · research

Casualty Actuarial Society

Presented new modeling methods to quantify the intersection of physical and cyber risk.

More info →

run · conference

RIMS Western Conference

Spoke on cyber insurance alongside influencers from AIG, Beazley, and Marsh.

More info →

run · keynote

Guidewire Connections

Presented a personal cyber risk product in the analytics and data track to thousands of attendees.

More info →

04 / endpoints

About & Connect

contact · status: open to signal

Security professional and industry speaker working where AI, healthcare, and the enterprise meet.

My experience spans media, finance, insurance, and government, with emphasis on software products, data science, and enterprise security. I work directly with customers, vendors, and partners to ensure success.

roleCISO, Hippocratic AI

advisoryTailscale · CloudFence · Fable · Cygnvs · iHealth Labs · SV Japan Platform

capitalGreylock · Glilot · YL Ventures · angel (5 cos.)

status● available for signal

// open a channel

LinkedIn ↗ X / Twitter ↗

AI lives on the endpoint.
So does the future of security.

// END_OF_FILE