Monica Verma

Most boards now run two parallel conversations: how fast to adopt AI, and how to defend against attacks AI is making cheaper and harder to detect. The two rarely meet in the same room. Adoption races ahead while governance and trust catch up only after a breach forces the question.

Monica Verma is a three-time CISO who helps boards and executive teams adopt AI without losing control of trust or security.

Download Profile

Full Profile

Why organisations work with Monica Verma

Operational CISO experience that informs every recommendation. Three CISO appointments, including Orange Business Cloud Services and the Norwegian Directorate of Health, mean her advice on AI risk comes from someone who has actually run the response.
A hacker’s view of AI threats paired with a CISO’s view of governance. She started in offensive security finding web application vulnerabilities. She now advises boards on AI trust and accountability. Both perspectives in the same conversation.
A proprietary maturity model. Her Cybersecurity Adoption Lifecycle Model, introduced in 2020, gives executive teams a way to locate themselves on the cyber and AI maturity curve.
Credibility with technical and commercial audiences. Booked by FT Live in Luxembourg, the ACFE Fraud Conference Europe, and WCM 2025 in Brazil for an audience of 2,000 leaders.
A clear point of view on the most contested question in the boardroom right now: how to adopt AI without breaking trust and governance. She has built her current keynote portfolio around it.

Biography highlights

Three-time Chief Information Security Officer with prior CISO appointments at Orange Business Cloud Services and the Norwegian Directorate of Health (Helsedirektoratet, Helfo, POBO).
Director, International Cybersecurity & Resilience at Booz Allen Hamilton (2024).
Recognised as Top #3 CISO in EMEA (2023), Top 50 Women in Tech (2022), and Outstanding Security Advisor at Norway’s Outstanding Security Performance Awards (2019).
Board-certified Qualified Technology Expert (QTE) and former board member of Cloud Security Alliance Norway and Women in Cybersecurity Norway.
Founder and CEO of Monica Talks Cyber and Cyber Foyer. Host of The Monica Talks Cyber Show podcast and author of The Predictability Factor newsletter.
Contributor to Dark Reading. Featured speaker at FT Live, the ACFE Fraud Conference Europe, WCM Brazil, Cyber Root Malta, and the Norwegian Tax Authority’s IT Tech conference.

Biography

AI is now in the boardroom and in the threat model at the same time. Most leadership teams have someone who can speak credibly about one or the other. Few have someone with three CISO appointments behind them and an active AI advisory practice on top.

Monica Verma’s career has run through both. The starting point was offensive security, finding vulnerabilities in web applications and cloud environments before attackers could. Three CISO appointments followed, including Orange Business Cloud Services and the Norwegian Directorate of Health. By 2024 she was Director of International Cybersecurity and Resilience at Booz Allen Hamilton.

Her published work bridges the same divide. The Cybersecurity Adoption Lifecycle Model, which she introduced in 2020, adapts the technology adoption curve to give executive teams a usable map of their cyber maturity. Her current keynote portfolio takes that lens into the AI era: Innovating with AI Without Breaking Trust and Governing AI Before It Hacks You.

The credentials track. Top #3 CISO in EMEA in 2023, Top 50 Women in Tech in 2022, Outstanding Security Advisor at Norway’s OSPAs in 2019. The booking pattern says more. FT Live brought her in for the European fund management industry in Luxembourg. The ACFE chose her to open its 2025 Fraud Conference Europe to ca. 500 anti-fraud executives. WCM Brazil put her in front of 2,000 leaders at one of the world’s largest strategy and leadership conferences.

Key speaking topics

AI security and governance
Cyber resilience in the AI era
AI risk and trust for the enterprise
Cybersecurity leadership at board level
The evolution of cybercrime
AI-enabled fraud and threat response

Ideal for

Boards and executive committees making AI adoption decisions where governance and security are not yet aligned.
CISOs, CIOs and CTOs whose teams are being asked to defend against AI-enabled threats while adopting AI internally.
Financial services, healthcare and public sector organisations facing high regulatory exposure on both AI and cybersecurity.

Audience outcomes

Specific examples of how AI is currently breaking enterprise trust in regulated industries.
A maturity check against the Cybersecurity Adoption Lifecycle Model that locates where the organisation sits.
The questions a board needs to ask before approving its next major AI initiative.
A view of how attackers are using AI today and which enterprise defences are still holding.

Available for

Speaking

Speaking Themes

Languages

English

Click the button below to check Monica Verma's fees and availability for your event.

Videos

Testimonials

I met Monica at the Nordic IT Security conference in Stockholm. Her talk was so well received she was asked to do it twice! The subject was adaptive security. She is very passionate has a great speaking style and her content is well thought out and unique. After the conference we debated the merits of adaptive security and how the model can be utilized in several areas. I look forward to working with her more in the future.

Tim Brown

CISO, SolarWinds

Another terrific session at ISF this year. It's always great to hear presentations from female leaders in the field of information security. Monica provided valuable insights into work of information security professionals and the challenges that they are faced with in their daily work.

Information Security Forum (ISF) Security Organization

I've been in InfoSec for well over 20 years, and had the opportunity to meet and work with thousands of highly skilled people in the industry. Monica is unique amongst them all. She's experienced, thoughtful, articulate and more importantly -- Monica is genuinely passionate InfoSec. For her, InfoSec is not just a career choice, but a personal calling. Her enthusiasm comes through in absolutely everything she does from her day-to-day work, her writing, and public appearances. She's always eager to help when asked and incredibly determined to make a real difference.

Jeremiah Grossman

BitDiscovery

Monica really knows her stuff, focusing not on just the technical perspective of security but the human also, which is key.

Lance Spitzner

Director, SANS Institute

Monica is an experienced technology and security leader and an engaging keynote speaker. She motivates and keeps the attention of her audience in an authentic, real, and insightful manner. I have heard Monica’s talks on several occasions and highly recommend her both as an experienced advisor and a keynote speaker. It will give you a real and long-lasting value.

Anette Roll Richardsen

CEO, Watchcom Security Group

Monica brings a wealth of experience to the table for these easy going conversations. It’s great to hear these nuanced topics discussed from a number of angles and when there’s disagreement, constructive debate ensues. A fantastic way to increase your cybersecurity knowledge!

Mark Nunnikhoven

Cloud Security Researcher

Monica is an inspiring and engaging speaker and conversation partner with a very good professional depth and breadth into cybersecurity. She has a strong commitment to the importance of technology and competence development needed to manage security risk. This I believe is a cornerstone of her leadership.

Hanne Tangen Nilsen

Security Director, Telenor