AI Risk Management

By John Romero
CIP and Physical Security Analyst

Artificial intelligence (AI) is rapidly transforming the cybersecurity landscape by expanding the capabilities of attackers and defenders. The National Institute of Standards and Technology (NIST) has released guidance to help organizations prepare for AI-related cyber security risks such as data poisoning or automated AI tool scans that can discover and weaponize vulnerabilities faster than humans can patch them. NIST’s Cybersecurity Framework Profile for Artificial Intelligence (NIST IR 8596) provides a system for identifying, assessing, and mitigating AI related cybersecurity risks.

NIST IR 8596 reinforces these priorities by defining three specific AI focus areas.