JamesHengsterman-Cash

Chief Information Security Officer · AI Governance · Cybersecurity · Compliance

Security executive focused on AI governance, cybersecurity strategy, compliance, and federal technology risk.

2025 Cybersecurity Excellence Awards Gold Award recipient, Cybersecurity Executive of the Year

Headshot of James Hengsterman-Cash

About

James Hengsterman-Cash is Chief Information Security Officer at Unison and a faculty member with Duke’s executive cybersecurity programs. His work focuses on the practical execution of cybersecurity, AI governance, compliance, and technology risk in federal and regulated environments.

He has held security leadership roles across AI, public sector, cloud, and defense-aligned organizations, with experience spanning enterprise security strategy, governance, risk, compliance, and customer trust.

Focus Areas

  • AI Governance

    Operating models for enterprise AI adoption, including risk ownership, data boundaries, model oversight, and executive accountability.

  • Cybersecurity Strategy

    Security leadership for SaaS, federal, regulated, and mission-critical technology environments.

  • Compliance by Design

    Using ISO/IEC 42001, NIST AI RMF, FedRAMP, and related frameworks as operating tools, not audit theater.

  • Federal Technology Risk

    Security and governance for platforms serving government agencies, defense missions, and highly regulated customers.

Writing & Commentary

James writes and speaks about the practical execution of AI governance, cybersecurity leadership, and compliance in regulated environments.

His commentary focuses on how executives can turn governance frameworks into operating models, align security with business risk, and build accountable programs for AI-enabled systems.

Speaking Topics

Available for executive education, panels, podcasts, media commentary, and advisory discussions.

  • AI governance operating models

    How organizations can define ownership, oversight, and acceptable use for enterprise AI.

  • Cybersecurity leadership in regulated environments

    How security leaders balance compliance, trust, customer commitments, and operational execution.

  • Compliance as an operating discipline

    How frameworks such as ISO/IEC 42001, NIST AI RMF, FedRAMP, and related standards can support better decision-making.

  • Federal technology risk

    Security and governance considerations for technology companies serving government, defense, and highly regulated customers.

Contact

For speaking, media, executive education, or advisory inquiries:

Connect on LinkedIn