0:11
From the data center to the edge: How to build secure, effective enterprise AI infrastructure
While hyperscalers and neo-cloud providers may get the lion’s share of attention for providing AI infrastructure, many enterprises are taking a build-it-themselves approach to meet their specific AI requirements. The success of such projects is crucial to achieving business objectives, yet companies face significant challenges as they try to scale pilots to production.
Organizations must keep up with the dynamic, ever-changing demands that AI applications place on compute and network infrastructure, from the data center to the edge. That means architecting systems to grow as demand warrants and to avoid performance bottlenecks. The architecture must also account for AI-driven security vulnerabilities and ensure appropriate defenses are in place.
Yes, it’s a tall order. But here, in simplified form, is a three-step plan for meeting those objectives.
Integrating all the required components in piecemeal fashion for an AI factory is complex, costly, and fraught with integration risk. Start with a modular design, based on proven NVIDIA reference architectures . A modular approach combines pre-validated accelerated computing hardware, AI software, and orchestration platforms, as well as networking and storage capabilities.
A modular strategy speeds implementation and creates a faster time to value for your AI infrastructure. Using modules that combine compute, networking, and storage makes it easier to scale capacity as needed, whether in the data center or at edge facilities.
In addition, the modular approach simplifies the job of addressing varying requirements, from inferencing engines at the edge to massive-scale model training in the data center, while staying within the same solution family.
The same applies to easing integration processes, as modular platforms offer pre-validated software. The Cisco Secure AI Factory with NVIDIA approach, for example, includes hardware ( Cisco AI PODS ) that is pre-validated to work with NVIDIA AI Enterprise software; Cisco Security and Splunk Observability software; orchestration platforms such as Ubuntu, Red Hat OpenShift, and Rancher by SUSE; as well as storage systems including VAST Data, Everpure (formerly Pure Storage), Hitachi Vantara, Nutanix, and NetApp.
Companies can also choose to manage the hardware and software with the cloud-based Cisco Intersight platform, which provides monitoring and management for physical and virtual infrastructure from the data center to the edge.
Embedding security throughout your AI infrastructure is critical to ensure continuous monitoring, threat detection, and response. However, this step can introduce tremendous complexity, especially given the bevy of cyber threats that AI introduces. Addressing them means implementing security solutions to cover all components of your AI infrastructure, including AI models, agents, applications, workloads, and the underlying infrastructure.
With agentic AI, which essentially empowers agents with decision-making capabilities, you need to secure agents as if they were employees. That means zero-trust policies should apply, including precise, context-aware controls to enforce least-privilege access for AI agents. If an agent is behaving suspiciously, it should be quarantined and investigated.
A critical benefit of Cisco’s modular approach is having all required security software built in. It simplifies integration and deployment while ensuring all security bases are covered.
Even if you follow steps one and two, you may still need assistance in determining your best deployment options.
Working alongside a vendor with a strong partner program and expert guidance can be a great asset. Value-added resellers (VARs) add value through expertise gained from numerous customer deployments and close relationships with their partners. Many also carry relevant certifications, such as the new Cisco AI Infrastructure Specialist Certification , which demonstrates credibility.
Vendors and VARs also offer professional services and NVIDIA enterprise support . The upfront costs are well worth it in the long run to minimize technical deployment and financial risks, lower your overall AI cost per token, and realize faster time-to-value from AI investments.
Learn how the Cisco Secure AI Factory with NVIDIA can help ensure a sound foundation for your enterprise AI projects.
5:53
OpenAI weighs Nvidia-backed lease for 10 GW Ohio data center campus
OpenAI is in advanced talks to lease a proposed 10‑gigawatt data center campus in southern Ohio, a deal that could include financial backing from Nvidia. The project, estimated to cost at least $500 billion given current chip, power and construction prices, would place OpenAI in control of the computing equipment under a 20‑year lease, with payments beginning once the site becomes operational. The first phase is slated for 2028, and Nvidia is expected to supply the hardware while guaranteeing both OpenAI’s lease obligations and the developer’s financing.
The structure illustrates a growing trend in AI infrastructure where model developers, chip manufacturers and energy providers forge long‑term partnerships to secure compute capacity amid soaring demand. Analysts say such symbiotic arrangements are becoming the norm, and that enterprises need to negotiate contracts that preserve flexibility and avoid reliance on a single vendor’s ecosystem.
The proposed financing builds on a partnership announced last year in which Nvidia committed to invest up to $100 billion as each gigawatt of its systems comes online, with the initial phase using its Vera Rubin platform. By guaranteeing the lease and financing, Nvidia would act as both hardware supplier and financial backstop, turning the relationship into a sponsor‑tenant model rather than a simple vendor‑customer link.
The campus aligns with a Department of Energy initiative to redevelop the former Portsmouth Gaseous Diffusion Plant near Piketon, Ohio. SoftBank‑owned SB Energy plans to build 10 GW
6:08
Residential proxies are hiding in plain sight inside enterprise networks
Residential proxy services route internet traffic through consumer devices to make connections appear to originate from real home IP addresses. Security researchers have tracked their use by threat actors for credential stuffing, ad fraud, and denial-of-service operations. What has been less understood is how widely those services have already penetrated enterprise networks, often without IT or security teams knowing.
As it turns out, the risks posed by residential proxies to enterprise networks are widespread. Infoblox analyzed billions of DNS resolutions across its Threat Defense Cloud customer base and revealed just how a big a problem it is. Key findings from the research include:
Monthly query volume to those domains grew roughly 25% between January 2025 and April 2026, reaching over 500 billion queries per month.
Residential proxy traffic appeared in every industry vertical examined, with at least 40% of customers in each sector affected.
Over 90% of pharmaceutical and food and beverage customers showed such traffic; more than 60% of government and banking customers did as well.
Brightdata, the most prevalent service observed, appeared in over 50% of cloud customer networks.
Grass, a cryptocurrency-paying proxy service, appeared in roughly 30% of customer networks.
A 265% single-day spike in affected customer networks querying IPIDEA domains occurred around the time Google disrupted that service in January 2026.
“We’ve got over approximately 65% of our cloud customers making connections to residential proxy services, which is kind of crazy,” Renée Burton , vice president of threat intelligence at Infoblox, told Network World . “We’re a company that’s got enterprises, governments, banks, car companies, police departments, and 65% making those connections is a very high number.”
A residential proxy routes internet traffic through consumer devices, including home routers, mobile phones, IoT devices, and applications with embedded proxy software. Unlike commercial VPNs or anonymization tools like Tor, which signal to destination sites that a connection is masked, residential proxies make traffic appear to originate from a specific real consumer device. The destination has no indication the connection is not what it appears to be.
The entry point into enterprise networks is the device itself. Employees connecting personal phones or laptops to corporate Wi-Fi bring any proxy software already running on those devices onto the network. Corporate devices can carry proxy SDKs embedded in consumer applications installed by the user. IoT devices deployed in corporate environments, including media streaming boxes or digital picture frames, may arrive with proxy software pre-installed or receive it through a firmware update.
6:08
A quick look at Cisco’s strategy to become a software monster
Cisco is in the years-long process of shifting from a hardware-centric business focused on switches and routers toward a broader software and services strategy, aiming to position itself as a central player in cloud, security, and AI-driven networking.
Cisco remains a dominant hardware vendor but has spent recent years investing heavily in software to build recurring revenue streams, said Jack Gold, president of J.Gold Associates . In fact in its Q3 earnings call in May, Cisco said that 49% of total quarterly revenue now comes from subscriptions to software, security and contract support rather than one-time purchases.
“What they are trying to do is get to a place where rather than just sell you a server or network switch and I’m done, is make themselves into basically a cloud service provider,” said Gold.
At the core of Cisco’s strategy is its growing focus on security and network visibility . With its equipment embedded across enterprise, telecom, and service provider networks, Cisco has a unique vantage point into data traffic . Gold noted that this visibility allows the company to expand into advanced security offerings, particularly as artificial intelligence introduces new challenges.
One emerging opportunity is identity management for AI agents . While identity tools for human users have been around for decades, managing identities for potentially millions of AI agents represents a largely untapped market. “This is a greenfield environment,” Gold said, adding that many organizations are still uncertain how to approach the issue.
In May Cisco announced plans to acquire Astrix Security for an undisclosed amount to bolster its AI agent security portfolio. Astrix is known for its security platform that specializes in identifying, managing and securing AI agents and non-human identities, such as machine-to-machine connections.
Cisco is also working to unify its existing portfolio into integrated platforms, which Gold says is its greatest challeng e. “ They still have a lot of ‘components’ that are not fully integrated at their customer sites. That’s why they are trying to build an overarching cloud management console. But it might be problematic for many customers who still have individual components they’ve had in place for years to fully get the overall integration in place, especially if they also have other vendor’s networking products in place ,” he said.
Cisco did just this month roll out an overarching management scheme called Cloud Control that promises a single management plane spanning networking, security, compute, observability, and collaboration.
Competition remains strong. Rivals like Hewlett Packard Enterprise and Palo Alto Networks are pursuing similar platformization strategies , while cloud providers including Amazon Web Services, Microsoft, and Google offer security and identity solutions tied to their own infrastructures. However, Cisco’s strength lies in its extensive installed base and partnerships across enterprises, hyperscalers, and semiconductor firms, Gold said.
6:08
AI-powered WAF, virtual patching: How F5 is hardening networks against frontier threats
The window between vulnerability discovery and active exploitation has been shrinking for years, and frontier AI models have accelerated that compression. To address that shift, F5 this week announced an expansion of its web application and API protection (WAAP) capabilities for its Application Delivery and Security Platform. The new features span three areas:
AI-powered web application firewall (WAF): Conducts enhanced behavioral detection in F5 Distributed Cloud Services, using a neural network model to score every request in real time rather than relying on signature matching.
API Security Local Edition: Delivers on-premises API discovery, visibility and security for air-gapped and regulated environments with no cloud dependency.
Virtual patching: Enhanced capability combines BIG-IP Advanced WAF and F5 Distributed Cloud Web App Scanning to apply runtime protection at the application delivery layer while remediation proceeds.
The AI-powered WAF is currently delivered through Distributed Cloud. F5 said it is in active engineering work to bring the same capability to BIG-IP, Nginx Plus, and Nginx Open Source for customers running on-premises or in restricted network environments.
“If the attacker is a machine and can devise new attack sequences in seconds, then your response to that cannot be signature-based. It has to be based around the behaviors that you detect and analyze,” Joel Moses , vice president of strategic engineering at F5, told Network World .
The AI-powered WAF in F5 Distributed Cloud combines the company’s existing WAF with a neural network model for behavioral characterization.
Rather than comparing traffic against a library of known attack signatures, the system assigns a numerical risk score to every request based on multiple signals. That score gives security teams specific, actionable context rather than a binary block-or-allow decision.
The concept of not relying on signatures has been a mainstay of security best practices for well over a decade, with vendors often promoting the use of heuristics-based technology. Moses said the F5 approach differs from earlier heuristics-based detection in both scale and capability. Earlier heuristics operated with a much smaller sampling window. The neural network model processes traffic across larger sampling windows and follows more paths through distance anomaly detection, making it more effective against attack patterns that have no existing signature.
The model is custom-built within F5’s AI center of excellence, not a fine-tuned version of a commercial foundation model. “It’s our own property developed inside of our AI center of excellence, and it is custom tuned for the purpose that it’s delivering,” Moses said.
6:08
EU rules on securing IT products begin this week, but enterprises aren’t ready
Too many enterprises remain ignorant of the European Union’s 2024 Cyber Resilience Act, the first elements of which enter force on June 11, according to a new survey.
Two-thirds of respondents to the survey by Open Source Security Foundation said they were unfamiliar with the CRA, which aims to make hardware and software sold in the EU more secure.
As well as the CRA’s demands on vendors, it also has implications for users of open-source software , hence the Foundation’s interest in the topic. Among other measures, the CRA creates the role of open-source steward within the enterprise, with responsibility for ensuring that a security policy is in place for any software being used within the organization.
The first part of the CRA to enter force, on June 11, concerns the designation of conformity assessment bodies by member states. Then, from September 11, manufacturers will be required to begin reporting vulnerabilities in their products to the relevant authorities. The remaining obligations under the Act, which include substantial financial penalties, will apply from December 11, 2027.
The impending sanctions seem not to have concerned businesses: 56 percent of respondents to the OpenSSF survey were unaware that non-compliance fines could reach €15 million or 2.5 percent of global annual turnover.
The lack of knowledge about the implications of the Act surprised OpenSSF CTO Christoph e r Robinson . “We’ve been speaking on this topic for some time and we’re scratching our heads on why more companies are not aware of the implications of the Act,” he said.
He surmised that some companies don’t think EU regulations on hardware and software security apply to them — but such concerns will soon be a global matter. “Other countries, like Japan, are considering similar laws,” he said.
One area of misunderstanding could be that the CRA applies to vendors, and their customers may think that the requirements under the Act didn’t apply to them. He said that this was a misguided approach, particularly when the CRA’s application to open-source software is taken into account.
“There are about 700 million projects in Git Hub. If you work for an organization like a bank, you have little idea which of those projects are being used,” he said.
Under the Act, software companies will have to supply a software bill of materials (SBOM) that has been passed as secure, he said.
Companies that supply US federal government organizations already face this requirement, he said: “If you’re selling to the US government — which is the largest customer on the planet – you should be providing an SBOM.”
Cybersecurity consultant Hans Study said that by addressing the supply chain issue, the CRA is a step in the right direction. “Almost every application has dependencies, whether that is free and open-source software, commercial packages, or some mix of both. The problem has always been responsibility, and the blame game that comes with it. What the CRA does is make it harder for companies to dodge that responsibility when they are building, selling, or placing products with digital elements on the market,” he said.
6:08
AI is becoming a single point of failure — and most companies don’t see it
Artificial intelligence doesn’t exist in a vacuum. It runs on infrastructure that is increasingly constrained, contested and, in many cases, outside a company’s control.
That reality is starting to surface in subtle ways. Vendors are adjusting access to AI capabilities, introducing tiered usage models and quietly reshaping what customers can expect from their tools. Microsoft, for example, has already shifted features and access within its Copilot ecosystem, signaling that capacity is not unlimited.
This isn’t new. In the early days of the internet, service providers could throttle access based on demand or pricing tiers until regulation stepped in to standardize availability. AI is beginning to follow a similar trajectory but with a more complex set of constraints: power availability, data center capacity, geopolitical risk and vendor concentration.
What makes this different is how quickly AI is being embedded into core business workflows. Nearly three-quarters of organizations are already using AI to automate processes across multiple business functions. Yet most have done little to account for the business interruption risk that creates. Many enterprises treat AI as always-available infrastructure. In reality, it is capacity-constrained, vendor-dependent and vulnerable to disruption.
The next phase of AI maturity isn’t about adoption. It will be about resilience, continuity and dependency management.
The question is no longer whether work can get done without AI. It is whether businesses can operate at the speed and volume they have already committed to without it.
Many organizations have redesigned workflows around AI-enabled efficiency. Tasks that once took hours now take minutes. Teams have been streamlined, and service-level commitments have been tightened. In many cases, entire operating models assume continuous AI availability.
In practice, it doesn’t hold. Even short disruptions can expose the gap. During a recent Microsoft services outage, some organizations lost access to AI models embedded in their workflows. Employees had to manually process tasks that had been automated — slowing operations and creating backlogs almost immediately.
At a small scale, that’s manageable. At the enterprise scale, it becomes a continuity risk. Planning for AI disruption starts with a mindset shift. Most continuity planning assumes degradation: systems slow down but still function. However, AI introduces scenarios where capabilities are unavailable altogether.
When building out a business continuity plan, three things are key:
Know what breaks. Most organizations don’t have a clear inventory of where AI is embedded across their workflows, including dependencies on specific vendors, models and infrastructure. Without that visibility, it’s difficult to understand failure points or build a mitigation plan around them.
6:08
The lean AI plan for action at VietBank
As a veteran of IT leadership, and just over two years into his current role as VietBank CIO, NghiaTran has rebuilt a strategic engine by not trying to out-spend the competition but by investing in AI-driven customer intelligence, like behavioral analytics and CRM integration. And since sensitive banking data can’t leave the building, flagship AI innovations, like their smart office tracking system (SOTs) and intelligent management system (IMS), were built entirely in-house using open-source components including a self-hosted LLM, rather than tools procured from enterprise vendors.
Delivered in just a few months on a lean budget, says Tran, SOTs cut document approval cycles by 35%, earned VietBank a CIO ASEAN Innovation Award in 2025, and drew an invitation from the Vietnamese government to present at last year’s National Digital Governance Conference.
From conceiving and building AI initiatives in-house to urgently deploying AI instead of waiting for perfect data, Tran has a vision of how to progress that makes the most sense to the business. “If we keep waiting for perfect data, we fall behind our competitors,” he says. The means by which to measure success, he adds, is through culture, in that even when hardware costs are skyrocketing as AI chip demand surges globally and business units feel the strain, giving people autonomy and room to grow make their work and place worth sticking around for.
What Tran is building at VietBank with a lean team, a clear plan, and an insistence for action, is a reminder that clarity and execution matter more than immediate and impatient scaling.
“My professional focus is on building a resilient technology foundation, advancing cyber maturity, and aligning with the complex IT ecosystem with business strategy and regulatory expectation,” he says. “My role is to ensure technology isn’t only innovative, but also secure, scalable, and directly tied to business value.”
Tran also details cybersecurity as the sector’s most underappreciated risk, keeping pace with neobanks, and adapting to change. Watch the full video below for more insights, and be sure to subscribe to the monthly Center Stage newsletter by clicking here .
On AI enabling diversification: I deployed agentic AI for the bank, which helps to automate and optimize critical processes such as document processing, approvals, and reporting to leadership with reduced manual operation, increased transparency, and greater data security within the internal environment.
Our IT targets value across efficiency, control, security, and scalability, and that’s my role. My target for IT support for the business is to improve information retrial, and write the quality and consistency of internal reporting and decision support. And from that, I and my team try to develop the technology that’s enables the business to function, and to help them to maximize their efforts.
6:08
Why your most AI-savvy employees are driving shadow AI
Last year, an engineer working for a messaging app posted a question on TeamBlind, the anonymous forum for verified tech workers: Did every company restrict ChatGPT, Claude, and Gemini — or was it just his?
When the company he worked for banned these tools, it offered an internal alternative built on ChatGPT, but the engineer didn’t like it because it slowed him down. “It was kinda useless,” he said.
The TeamBlind thread quickly filled with responses from techies at other organizations who joined him in his frustration that company-approved AI tools were heavily restricted or stripped of many useful features.
A week later, the same engineer returned to the forum with a workaround. Using a WebAssembly-based LLM engine, he managed to run a coding model entirely inside his browser, with conversations stored locally and no outbound network traffic for his employer to detect. “Happy coding,” he wrote on the forum. “DM me for features.”
Often, the employees who best understand the capabilities of gen AI are also the most likely to bend or break organizational rules governing its use. Engineers and, perhaps counterintuitively, other workers who have undergone mandatory AI training often see official guardrails less as strict boundaries and more as hurdles to overcome in the name of speed. A recent LexisNexis report found that 74% of AI-trained employees use unauthorized AI tools , versus only 17% of untrained employees.
“The issue is the gap between employee capability and enterprise-ready tooling,” says Dani McCormick, VP of product at Nexis Solutions. “Those with greater awareness of AI tools are more likely to experiment and incorporate them into their workflows.”
Training appears to remove some of the hesitation employees may initially feel toward gen AI, which can act as a barrier to adoption. “The takeaway isn’t that training creates risk, but that it surfaces demand faster than many organizations are prepared to meet,” McCormick adds.
Given all these, CIOs need to walk a fine line between encouraging AI adoption and controlling how these tools are used. That’s a difficult task that requires a rethink. As employees grow more comfortable with gen AI, traditional approaches, including blanket bans, may no longer work and can even prove counterproductive.
A more productive approach would be to capitalize on shadow AI’s silver lining. Using restricted AI tools can also be a sign that employees see value and are trying to move faster, says Seth Cohen, CIO at P&G. “The opportunity is to bring that learning into a system that’s right for the company and can scale,” he says.
But figuring out how to create that system can be a challenge for many CIOs under pressure to encourage experimentation while also protecting sensitive data and maintaining control over an increasingly fragmented AI landscape.
6:08
New US CIO appointments, June 2026
Movers & Shakers is where you can keep up with new CIO appointments and gain valuable insight into the job market and CIO hiring trends. As every company becomes a technology company, CEOs and corporate boards are seeking multi-dimensional CIOs and IT leaders with superior skills in technology, communications, business strategy, and digital innovation. The role is more challenging than ever before — but even more exciting and rewarding! If you have CIO job news to share, please email me!
Citigroup is a global financial services company based in NYC that provides a broad range of financial products and services. Saluzzo joins from Google, where he most recently served as VP of core developer engineering and product management. Earlier in his career, Saluzzo held several senior tech leadership positions at American Express and tech infrastructure leadership roles at Goldman Sachs. He holds a BA from SUNY Geneseo.
Arch Insurance North America, part of Arch Capital Group Ltd., includes Arch’s insurance operations in the US and Canada. They provide a wide range of property, casualty, and specialty insurance for corporations, professional firms, and financial institutions. Jalozie joined as VP, IT application development, and served as interim CIO since May 2025. He held a variety of IT and leadership positions prior to joining Arch.
Diebold Nixdorf automates, digitizes and transforms the way people bank and shop. Its integrated solutions connect digital and physical channels for millions of consumers every day. Most recently, Singh served as CIO at automotive technology supplier Visteon Corp., where he led enterprise AI programs, cloud transformation initiatives, and cybersecurity operations. His background also includes senior tech leadership positions at Ford Motor Co., DTE Energy Co., Horizon Global Corp., and Ally Financial Inc. Singh holds a BE from North Maharashtra University and an MBA from Michigan State University.
Topgolf operates over 100 venues around the globe, powered by Toptracer technology. They offer a variety of tech-driven games, a food and drink menu, space to host large events, and a vibe focused on more play for all. Spears joins Topgolf from CEC Entertainment, where he served as CIO. Prior to CEC Entertainment, he held leadership roles at Six Flags Theme Parks, Urban Air Adventure Parks, KPMG, and EZLynx.
Crown Castle owns, operates, and leases approximately 40,000 cell towers across the US. Most recently, Lennon served as CIO and digital officer at Net Power, where he developed and led a digital strategy for a new phase of growth. He’s also held CIO roles at Archrock, Jardine Lloyd Thompson, Maersk Oil, and UniversalPegasus International. Lennon began his career with the Royal Air Force in the UK.
BDO USA operates as part of the BDO International network, which spans more than 160 countries and provides audit, tax, and advisory services through independently owned member firms. Maza was most recently CIO of a large insurance brokerage and risk management firm, where he led an IT organization of approximately 250 professionals. He holds a BS from DeVry University and an MS from DePaul University.