Guidance on GenAI intelligence risk: ISACA


Thursday, 21 September, 2023
Guidance on GenAI intelligence risk: ISACA

A new white paper from ­­­ISACA examines the benefits and risks associated with generative AI use, including recommended protocols and practices for AI security.

The Promise and Peril of the AI Revolution: Managing Risk explores the rapidly evolving risk landscape and the steps that risk professionals should take to keep up.

While excitement around generative artificial intelligence applications like OpenAI’s ChatGPT and Google’s Bard has grown, so have the notes of caution from many in the industry, who point to a range of potential problems.

The paper examines several different types of potential risk that enterprises could face with generative AI, including invalid ownership, weak internal permission structures, data integrity and cybersecurity and resiliency impact, not to mention larger societal risk.

As AI will likely affect businesses in every industry, organisations must take four important steps to maximise AI value while installing appropriate and effective guardrails, as part of a continuous risk management approach:

  • Identify AI benefits.
  • Identify AI risk.
  • Adopt a continuous risk management approach.
  • Implement appropriate AI security protocols.
     

Following these steps will allow leaders to strike a good balance of risk versus reward as AI-enabled tools and processes are leveraged in their enterprises. In addition to breaking down the above four steps, the ISACA paper includes eight protocols and practices for building AI security programs in the fourth step, including:

  • Trust but verify.
  • Design acceptable use policies.
  • Designate an AI lead.
  • Perform a cost analysis.
     

“While some leaders may prefer to wait to adopt AI tools, it can be a risk to your organisation to delay the implementation of proper security and risk management plans; AI risk isn’t just a precaution — it’s a necessity,” said Jason Lau, Chief Information Security Officer of Crypto.com and ISACA Board Director.

“It is imperative that leaders prioritise establishing the correct infrastructure and governance processes for AI in their organisations, ensuring they align with core ethics, sooner rather than later.”

The paper is available for download here.

Image credit: iStock.com/Yuuji

Related News

Cognizant and Microsoft forge AI partnership

Cognizant and Microsoft will collaborate to develop AI applications harnessing the power of...

Zendesk launches AI-powered customer experience solution

A new Zendesk AI suite aims to help organisations transform the customer experience with the...

Ingram Micro Experience 2024 open for registrations

Technology distributor Ingram Micro has opened registrations for its annual Ingram Micro...

Content from other channels on our network

'Curving' light beams could enable terahertz comms

Panasonic offers private 5G network testing in Munich

Antenna upgrade enables better sewer management

60 million Aust drone flights predicted for 2043

The fire on Marley's Hill

Robotic lab enhances battery manufacturing

Machine learning used to create fabric-based touch sensor

Hybrid sodium-ion battery can be charged in a few minutes

Researchers develop energy-efficient probabilistic computer

Wearable sensor measures real skin feel

EV future for Monash Uni

Shell Cove battery launched on NSW South Coast

Million-dollar rooftop solar for Kimberley hospital

Protecting wildlife from electrical assets — and vice versa

Immersive VR training for electricians

  • All content Copyright © 2024 Westwick-Farrow Pty Ltd