CISOs are increasingly confident in the secure use of generative AI in their organizations [2] [3], with over half viewing it as a positive force for security [1].
Description
Nearly half of CISOs allow the use of generative AI tools for specific applications, with final decisions typically made by the CISO’s office [1] [4]. A majority of CISOs are knowledgeable about how AI tools handle data [2], with 54 percent feeling confident in understanding data usage. Despite concerns about data privacy, 41 percent of CISOs have policies covering AI usage [4]. The ClubCISO survey indicates that CISOs have taken steps to educate their organizations about the risks associated with AI tools [2] [3], with 57 percent believing their staff are aware of data protection implications when using AI tools [4]. Only 23 percent have region-specific or function-specific rules governing generative AI use [1], marking a change from when data privacy and security concerns were top-of-mind risks for organizations [1].
Conclusion
CISOs are adapting to the use of generative AI tools in their organizations, with a majority feeling confident in understanding data usage and implementing policies to cover AI usage. While concerns about data privacy persist [4], CISOs are taking steps to educate their staff about the risks associated with AI tools [2] [3]. Moving forward, it will be important for CISOs to continue to monitor and address data privacy and security concerns as AI technology evolves.
References
[1] https://pachronicle.com/cisos-confident-about-security-and-gen-ai-risks/
[2] https://www.infosecurity-magazine.com/news/ciso-confidence-ai-security-grows/
[3] https://ciso2ciso.com/ciso-confidence-in-ai-security-grows-as-genai-adoption-rises-source-www-infosecurity-magazine-com/
[4] https://betanews.com/2024/05/16/cisos-confident-about-security-and-gen-ai-risks/