JamesHengsterman-Cash
Chief Information Security Officer · AI Governance · Cybersecurity · Compliance
Security executive focused on AI governance, cybersecurity strategy, compliance, and federal technology risk.
2025 Cybersecurity Excellence Awards Gold Award recipient, Cybersecurity Executive of the Year
About
James Hengsterman-Cash is Chief Information Security Officer at Unison and a faculty member with Duke’s executive cybersecurity programs. His work focuses on the practical execution of cybersecurity, AI governance, compliance, and technology risk in federal and regulated environments.
He has held security leadership roles across AI, public sector, cloud, and defense-aligned organizations, with experience spanning enterprise security strategy, governance, risk, compliance, and customer trust.
Focus Areas
-
AI Governance
Operating models for enterprise AI adoption, including risk ownership, data boundaries, model oversight, and executive accountability.
-
Cybersecurity Strategy
Security leadership for SaaS, federal, regulated, and mission-critical technology environments.
-
Compliance by Design
Using ISO/IEC 42001, NIST AI RMF, FedRAMP, and related frameworks as operating tools, not audit theater.
-
Federal Technology Risk
Security and governance for platforms serving government agencies, defense missions, and highly regulated customers.
Writing & Commentary
James writes and speaks about the practical execution of AI governance, cybersecurity leadership, and compliance in regulated environments.
His commentary focuses on how executives can turn governance frameworks into operating models, align security with business risk, and build accountable programs for AI-enabled systems.
Speaking Topics
Available for executive education, panels, podcasts, media commentary, and advisory discussions.
-
AI governance operating models
How organizations can define ownership, oversight, and acceptable use for enterprise AI.
-
Cybersecurity leadership in regulated environments
How security leaders balance compliance, trust, customer commitments, and operational execution.
-
Compliance as an operating discipline
How frameworks such as ISO/IEC 42001, NIST AI RMF, FedRAMP, and related standards can support better decision-making.
-
Federal technology risk
Security and governance considerations for technology companies serving government, defense, and highly regulated customers.
Contact
For speaking, media, executive education, or advisory inquiries: