.png)
Join George Totev, CISO at Trustero, as he hosts a fireside chat with Selim Aissi, a three-time CISO and cybersecurity leader with more than 25 years of experience. In this episode, George and Selim discuss the future of Risk and Control Self-Assessment (RCSA) in financial services, and how AI can help transform a historically manual, static, and resource-intensive process into something more continuous, evidence-based, and threat-aware.
The conversation explores why traditional RCSA processes struggle to keep pace with today’s dynamic risk environment, especially across complex financial institutions, fintechs, and highly regulated organizations. Selim shares practical insights on the challenges of manual evidence collection, audit fatigue, fragmented telemetry, subjective risk scoring, and the lack of real-time control validation.
George and Selim also examine the role AI can play in modernizing GRC, from automating evidence collection and continuous control monitoring to improving risk visibility, reducing governance lag, and connecting risk assessments more directly to threat intelligence. The episode also touches on FFIEC self-assessment changes, regulatory expectations, shadow AI, data leakage, AI-driven fraud, and the emerging risks created by AI agents in security and compliance.
Tune in for a forward-looking discussion on how AI could reshape RCSA, GRC automation, and operational risk management for financial services organizations.