Agentic AI: A Risk and Security Program
Overarching Challenges
AI and Cyber Risk Governance
RISK: effective strategies for identifying, managing, sharing the responsibility across the business and security teams, vendor and partner risk management, continuous assessment
TECHNOLOGY: quantification tools, dashboards, ability to report, track
AI and Security
Securing AI Models Usage, Access, and Data
Foundational Code Security and software supply chain security
Integrating AI into security operations
Defending against emerging AI attacks
Major program themes, workshop focus areas
-
Enterprise standards for use of AI, mapping to NIST or other resources (ISO, EU AI).
-
Risk scoring under a CIA framework
-
AI 3rd party risk models for assessment and oversight – contracts, new AI deployments, updates, incidents, shared responsibility model and risk transference
-
Securing the AI models and Agentic AI – Red Teaming AI and other assessments of model security, MCP, agent controls and identities, agent lifecycle
Zoom Sessions
Date | Title |
|---|---|
Feb 25 | AI/Cyber Policy, Regulations and Standards |
March 19 | AI Vendor Assessments and Risk Mgmt |
April 16 | Third Party Mgmt: Evaluating AI Risks |
June 18 | Operationalizing AI in Cyber Defenses |
July 16 | AI/Cyber Insurance and Risk Management |
August 20 | Insider Risk Programs: Emerging Tools and Staff Education |
Sept 16 | Secure Coding & Lifecycle: What Changes with AI? |
Oct 15 | AI Systems: Securing and Governing the Models and the Data |
Dec 16 | Quantum Update |
In Person Dates
May 13
Spring AI/Cyber Risk Governance Workshop
November 18
Annual Member Conference