- This event has passed so registration is closed.
Overview
Existing risk management policies, and the related business processes, which may have been appropriate for the traditional information technology environment, will not be workable in the AI environment. In this presentation, we’ll discuss what’s markedly different between the traditional information technology risk management environment, and the new AI risk management environment. For example, there is a risk of model stealing with publicly facing AI systems, but no such risk is found in traditional publicly facing systems. Likewise, the result provided by a certain query submitted to a Generative Artificial Intelligence (GAI) system may not be the same from day to day, but no such phenomenon is present with traditional information systems. Similarly, the great power of AI systems can be used to overcome traditional privacy-protection mechanisms such as anonymization, and this has not been previously encountered with traditional information systems. Also covered in this presentation will be suggested managerial and technical responses to these differences, such as an AI Acceptable Use Policy and an AI Life Cycle Process. Some recent legal developments in the AI risk management area will also be briefly covered.
Moderator
Alex Grohmann – Founder, Sicher Consulting
As a security and privacy professional for over 25 years, Alex Grohmann as helped to promote the profession through professional and personal contributions. He is currently the Chief Information Security Officer (CISO) for Acuity International, a $550 million organization with locations in over 10 countries. He volunteers a great deal of his time to make the profession stronger through his efforts in ISSA.
During Alex’s time on the international board, has been the lead for the Privacy Special Interest Group (SIG), managing the group and the efforts along with the chairs. The SIG has grown to nearly 2,000 members in the few short years of its existence.
As a 20-year member of the Northern Virginia chapter, Mr. Grohmann has volunteered on its board for 9 years, with 3 of those as chapter president. During that time, the chapter won the Chapter of Year, and he collected the Honor Roll and Fellow designations.
Outside of ISSA, Alex has served on several boards and/groups including Washington DC InfraGard, NIST’s NICE and the IT-Sector Coordinating Council (IT-SCC).
Alex is a graduate of Florida State University in Management Information Systems, and a proud Seminole.
Speaker/s
Charles Cresson Wood, Esq.
Charles Cresson Wood, Esq., JD, MBA, MSE, CISM, CISSP, CGEIT, CIPP/US, CISA, is a risk management attorney and management consultant. His most recent book is entitled “Internal Policies for Artificial Intelligence Risk Management.” That book provides a compendium of already-written policies which can be adapted to any user organization’s environment, approved, and internally published at licensee organizations. Charles is best known for his book entitled “Information Security Policies Made Easy,” which has been purchased by 70%+ of the Fortune 500 companies. Charles is also the author of the recent book entitled “Corporate Directors’ & Officers’ Legal Duties for Information Security & Privacy.” He has over 40 years in the information systems risk management field, and can be reached through his web site www.internalpolicies.com.
Recent On-Demand Web Conferences
ISSA Webinars and Conference series cover all the continuing education credits to maintain your cyber security certifications. (CPEs, CEUs, ECE, etc). Each hour is equal to one continuing education credit. Certificates of completion are available upon request after completion. For instructions, click here.