I was recently interviewed by The Techest online publication about my thoughts on the risks of “Shadow IT” you can find the article here. Let me know what you think!
I’m finding myself increasingly having discussions about AI/Gen AI and how best to responsibly deploy AI-based solutions. My immediate reaction to this issue, when we first started contemplating both the opportunities and the risks about 2 years ago, was that I was cautious about re-inventing things from a governance perspective. My belief was, and still is – while AI represents some new opportunities and risks, many of the foundational governance structures/processes/control expectations will apply – as-is. How we govern and manage third parties, how we deal with data and model risks, how we control cyber risks remained top of mind as we assessed existing governance frameworks.
I’m quite interested to hear from my peers, what has your experience been? With full disclosure, I am collaborating with UC San Diego and SparkAI on development of insights to frame for executives what they need to consider as we navigate and increasingly AI-powered world.
I look forward to hearing from you!
GT
I’ve been very fortuate to have had the opportunities I’ve had over my career. It’s those opportunities that have paved the way to an early “retirement”. Well let’s just say a retirement from the daily grind. I’m happy to offer my skills knowledge and expertise to firms of all sizes who are looking for help on how to manage their IT and cyber risks.
As a former CISO in a federally regulated industry I’ve seen and experienced quite a bit over the past 25 years or so.
So if you or your firm needs insights on cyber leadership, strategy, execution or if you’re simply struggling with how to prioritize the plethora of important risk management activities on your plate, don’t hesitate to contact me. let’s see if I can help.
Cheers, Greg
Recovering CISO