Is your org’s AI policy integrated into the IT security policy, or does it exist as its own separate policy?

Security Strategy & Roadmap Machine Learning (ML)

AI policy is integrated into IT security policy17%

We have a separate AI policy, but IT security policy includes section on AI security55%

AI policy and IT security policy are completely separate26%

Something else (explain in a comment)2%

93 PARTICIPANTS

635 views1 Comment

Sort by:

Fractional CIO in Services (non-Government)6 months ago

There's a 3rd angle in here and that's data classification and handling, which is often a policy distinct from IT Security.

Data classification has an impact on AI as there are certain types of informaiton or data you don't want/can't have an AI accessing.

To this end, the 3 policies should be seperate but cross referencing each other where appropriate.

Content you might like

What are some best practices to follow when your organization is preparing to end a vendor relationship? What can you do to minimize the operational disruption that would result?

What are the key steps to transition a Chief Information Security Officer (CISO) into a Business Information Security Officer (BISO) role while preserving advisory responsibilities and avoiding being treated as a PMO?

In light of the story around AI ethics researcher Timnit Gebru, do you believe Google is committed to transparent and ethical AI practices?

Yes, they are, and they handled the situation appropriately23%

Yes, they are, but they didn't handle the situation well49%

I'm not sure they are committed to transparent and ethical AI practices19%

No, they are not committed to transparent and ethical AI practices7%

View Results

Does your cyber program include an InfoSec steering committee?

Yes41%

It's being discussed43%

No14%

Unsure

View Results

What are your preferred tactics for building effective collaboration on cross-functional teams involved in AI governance and risk management (e.g., joint steering committees, shared KPIs, etc.)? Which roles are currently involved?

Is your org’s AI policy integrated into the IT security policy, or does it exist as its own separate policy?

Sort by:

Content you might like

What are some best practices to follow when your organization is preparing to end a vendor relationship? What can you do to minimize the operational disruption that would result?

What are the key steps to transition a Chief Information Security Officer (CISO) into a Business Information Security Officer (BISO) role while preserving advisory responsibilities and avoiding being treated as a PMO?

In light of the story around AI ethics researcher Timnit Gebru, do you believe Google is committed to transparent and ethical AI practices?

Does your cyber program include an InfoSec steering committee?

What are your preferred tactics for building effective collaboration on cross-functional teams involved in AI governance and risk management (e.g., joint steering committees, shared KPIs, etc.)? Which roles are currently involved?

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

CrowdStrike Outage: Impact And Recovery

GenAI Training Methodologies: Insights for Marketing Teams

2024 Cloud Spending: IT Balances Costs with GenAI Innovations

Generative AI Training for IT Organizations

Navigating the Future: The Evolution of GenAI in Legal

Take Your Insights On-the-Go