Security News > 2024 > May > CISOs pursuing AI readiness should start by updating the org’s email security policy

Conduct regular security training, especially with staff members who work with sensitive data and with executives who are often the targets of BEC. This should include live instruction, security awareness training videos and testing, and phishing simulation testing that use current, real-world attacks as examples.

Finally, gamifying the cyber-aware culture by rewarding the employee with "Most reported emails" or the "Fastest reporter" promotes contributing to the overall security posture of the organization while keeping reporting engaging and fun.

Reevaluate legacy security systems - In the brief period that generative AI has been available to the public, it has already managed to totally reshape the cybersecurity landscape, so it's imperative that organizations adopt policies that ensure their defensive security capabilities are up to date and "AI ready".

One of the most effective ways of ensuring continued AI readiness is to make the shift from static to adaptive security systems.

Effective, up-to-date policies are foundational to an organization's cybersecurity strategy, and powerful determinants of overall security posture.

While the above list is by no means exhaustive, it should at least give every CISO a good starting point from which to update and refine their own policy documents - and a much-needed head start in the race for AI readiness.

News URL

https://www.helpnetsecurity.com/2024/05/23/cisos-ai-readiness-policies-update/