AI as an Insider Threat: Expanded Risks with Expanded Usage
Next-generation AI models may pose a “high” cybersecurity risk, including the potential to generate sophisticated exploits or assist intrusion operations, according to a warning from OpenAI. This highlights that AI is no longer just a defensive tool; it is a strategic attack surface that organizations must actively govern. Adding to that, 60% of organizations are highly concerned about employee misuse of AI […]
Is the Cloud Migration Mindset Snafu Reoccurring with Untethered AI Adoption?
Organizations once rushed to the cloud in search of transformation, innovation, reduced cost of ownership, and a competitive advantage. In that haste, they overlooked a hard truth: threat actors thrive in environments filled with misconfigurations and weak security practices. Many enterprises quickly embraced cloud capabilities, but they failed to bring cybersecurity along with them. Most […]
Governance of AI and Other Emerging Technologies: Balancing Innovation and Responsibility
Artificial Intelligence (AI) and other emerging technologies, such as blockchain, IoT, quantum computing, and biotechnology, are not just reshaping industries and societies but also offering a beacon of hope. These innovations bring immense potential to solve complex problems, drive efficiency, and enhance the quality of life. However, they also raise critical questions about ethics, privacy, […]
AI: Protecting end users from themselves.
Every once in a while there is a product or technology that comes out that is a complete game changer not only for organizations, but society as a whole. The advent of AI is not new, but the adoption of large language models has exploded over the past seven years, giving everyday people the ability […]
NIST AI RMF vs ISO/IEC 42001
Bridging AI Governance and Risk Management As artificial intelligence becomes increasingly integral to business operations, regulators and standards bodies are establishing frameworks to promote trustworthy, transparent, and responsible AI. Three of the most influential are the NIST AI Risk Management Framework 100-1 (AI RMF 1.0), with companion resource 600-1 for Generative AI, and the ISO/IEC […]
Building a Governance-Driven, Holistic Cybersecurity Program
How a CISO or Virtual CISO Can Align Strategy, Frameworks, and Risk Management The latest SANS & Expel survey underscores a critical point: organizations are adopting tools and frameworks, but many still lack the governance, accountability, and risk-based strategy necessary to mature security operations. This is where a Chief Information Security Officer (CISO) or virtual […]