Rapid adoption of AI and lack of comprehensive risk management strategies can add significant risk to organisations, warns Professor Jason Lau, Board Director, ISACA. He suggests eight foundational protocols for creating an AI security programme. These include continual audits of AI-generated output, developing acceptable use policies, designating an AI Lead, performing a cost-benefit analysis, updating cybersecurity programs, implementing regular audits and traceability, creating AI ethics, and adapting society.
The NCSC wants developers to get serious on software security
The NCSC’s new Software Security Code of Practice has been praised by cyber professionals as a significant advancement in enhancing software supply chain security.
