Cyber Risk, Privacy, and Accountability with Alexandre Blanc

In this episode of CCN Conversations, host Francois Guay speaks with Alexandre Blanc, a cybersecurity and privacy leader with more than 25 years of experience across IT, security, and incident response.

Alexandre shares his unconventional path into cybersecurity, beginning in infrastructure, networks, and encryption work, and explains how regulation, governance, and real-world events shaped his focus on privacy and risk. He reflects on intense incident response work, burnout, and the realities of operating behind the scenes during high-profile security events.

The conversation explores governance, risk, and compliance in Canada, including the impact of privacy laws like Quebec’s Law 25, third-party risk, and the growing complexity introduced by AI, SaaS platforms, and external data processing. Alexandre offers a grounded perspective on AI in GRC, emphasizing due diligence, transparency, and understanding how data is actually used.

They also discuss cyber insurance, accountability, and the limitations of transferring risk, as well as Alexandre’s vision for the future, where individuals regain control over their digital identities and personal data.

This episode is especially relevant for cybersecurity leaders, risk and privacy professionals, policy makers, and anyone thinking critically about data ownership, governance, and long-term resilience.

Listen now and join the conversation.