AT Infosecurity Europe 2026, Bayer's CISO, Kevin Jones, unveiled a new security awareness training focused on psychology to counter AI-driven threats. The traditional technical approach was abandoned in favor of teaching employees to recognize psychological manipulation in social engineering attempts, highlighting real-world success stories where this training prevented financial loss. Additionally, Bayer linked AI access to training completions and implemented a tiered access model for AI tools.
Jones expressed a vision for security operations centers to evolve into cyber resilience centers, emphasizing the importance of managing AI effectively. Third-party contracts now include AI use clauses, ensuring compliance and data integrity, as Bayer strengthens its AI governance.