Is your org’s AI policy integrated into the IT security policy, or does it exist as its own separate policy?

Security Strategy & RoadmapMachine Learning (ML)

AI policy is integrated into IT security policy19%

We have a separate AI policy, but IT security policy includes section on AI security52%

AI policy and IT security policy are completely separate27%

Something else (explain in a comment)1%

73 PARTICIPANTS
510 viewscircle icon1 Comment
Sort by:
Fractional CIO in Services (non-Government)4 months ago

There's a 3rd angle in here and that's data classification and handling, which is often a policy distinct from IT Security.

Data classification has an impact on AI as there are certain types of informaiton or data you don't want/can't have an AI accessing. 

To this end, the 3 policies should be seperate  but cross referencing each other where appropriate. 

Content you might like

What adjustments are you planning to make to your org’s cyber budget for 2026 (if any)?

When it comes to running phishing simulation campaigns. What is the best practice on how often they should be run and at what cadence should phishing simulation emails be sent out? Some organizations only run a campaign once per quarter sending out a simulated phishing email about once per week while other organizations run continuous campaigns sending out phishing simulations about once every 2 weeks. What are other organizations doing and what is the best practice?

Read More Comments

Which of these technologies do you consider the most crucial for consolidating your org’s cybersecurity tech stack?

SASE18%

IAM/IGA42%

XDR31%

DSPs (data security platforms)5%

CNAPP2%

Something else (share in the comments)1%

View Results

Has anyone reviewed both the MIT success rate and the ChatGPT success rate?

Read More Comments

How soon will we see cyberattacks using ChatGPT-written malware?

Any day now17%

Within a few months41%

Within the year20%

Within 2+ years12%

Never7%

Not sure yet1%

View Results