AI Governance , AI Technologies , Generative AI
Advice to CISOs: Address AI Challenges Now!
Forrester's Tope Olufon on AI Deployment, Security Risks and Practical SolutionsOrganizations are deploying generative AI technologies, and security leaders must "figure out a way to deal with it," said Forrester senior analyst Tope Olufon. CISOs need to approach AI as they would any other technology, he said. "Create a threat model, not just based on best practices, but for your organization, and then build security for that."
See Also: OnDemand: AI Model Security Challenges: Financial and Healthcare Data
Security leaders often underestimate the immediate risks posed by new technologies such as generative AI, leading to shadow IT issues. When cloud technology emerged in 2006, many security leaders failed to manage cloud deployments. As a result, shadow IT developed, and tools were deployed to the cloud without proper oversight. Olufon advised CISOs not to make the same mistake with AI.
"Someone, somewhere, in some organization, right now is drafting an AI information security policy that is prohibitive and impractical. Employees will find ways to circumvent it," he said. "They will stick to your policy, but it's never going to be effective. That's what is going to happen for the next few years, if you don't deal with it right now."
In this video interview with Information Security Media Group at Infosecurity Europe 2024, Olufon also discussed:
- The top potential applications for AI in security;
- Case studies on successful adoption of AI in organizations;
- Using AI to analyze log data and user behavior to onboard new SOC analysts.
Olufon has technical experience in the areas of application security, cybersecurity strategy, security operations, application development, wireless sensor networks and digital forensics. He previously worked and consulted in the e-commerce, cloud services and financial services sectors.