New KnowBe4 CEO Bryan Palma Tackles Human Risk with AI Solutions

In a recent statement, Bryan Palma, the newly appointed President and CEO of KnowBe4, emphasized the potential of Agentic AI to enhance cybersecurity training and address emerging threats such as deepfakes. His vision aims to improve organizational behavior and decision-making in cybersecurity through various techniques, including phishing simulations and data loss prevention alerts. Palma is particularly focused on expanding KnowBe4’s email security capabilities, acquired from Egress, to include SMS and voice phishing, illustrating a holistic approach to human-centered cybersecurity defenses.

With over two decades in the tech industry, Palma brings extensive experience in scaling businesses in the cybersecurity sector, particularly in navigating the financial growth from $1 billion to $3 billion. This expertise positions him as a key player in KnowBe4’s forward-looking strategies, particularly as the company prepares for an Initial Public Offering (IPO).

During a video interview with Information Security Media Group, Palma discussed the ongoing role of Stu Sjouwerman, the founder and former CEO of KnowBe4, as well as the internal strategies for advancing Agentic AI. He underscored the competitive landscape, detailing how KnowBe4 plans to outperform rivals such as Proofpoint, Mimecast, and Barracuda.

Palma’s prior leadership at Trellix, formed through the merger of FireEye and McAfee Enterprise, showcases his capability in managing significant technology and business transformations across multiple sectors, including notable organizations like Cisco and Boeing. His collaborative role on the President’s National Security Telecommunications Advisory Committee further reinforces his credibility in this rapidly evolving field, making him a strategic asset for KnowBe4.

This strategic direction at KnowBe4 reflects an acute awareness of the contemporary cybersecurity landscape, where understanding vulnerabilities has become increasingly paramount. Possible tactics outlined in the MITRE ATT&CK framework, such as initial access, phishing, and privilege escalation, may play different roles in the evolving cybersecurity paradigm. As Palma’s initiatives take shape, the focus on human risk management alongside advanced technologies signals a critical shift towards addressing cybersecurity from the ground up.