I am attending the AI summit of Black hat conference and tomorrow I will be a speaker and panel moderator on the topic of the AI and information security risks. Back in March 2024 I was one of the first qualified trainer for ISO 42001 AI management system auditors training and had great experiences in AI application and development attendees who gave me great insides on the topics of what people understand wrong or don’t understand which is AI related (I thought it’s much more complex and complicated areas and topics)
5 insights:
- Most of the people (and companies) understand difference in AI and not AI and even less understand the difference in AI types (let’s say machine learning and Generative AI)
- Not all risks coming from the information security sides.
- Sometimes benefits of using AI for the information security is greater than information security risks from using AI for work if employees are not properly educated.
- Most are real and current information security risks are coming from the social engineering perspectives.
- Most of the current emerging AI risks can be mitigated with increasing of employees or subcontractors awareness, implement training and understanding of AI usage and implication
Next post tomorrow: Why if you ban AI at work it will only magnify the problem?