Security News > 2024 > May > CISOs pursuing AI readiness should start by updating the org’s email security policy
Conduct regular security training, especially with staff members who work with sensitive data and with executives who are often the targets of BEC. This should include live instruction, security awareness training videos and testing, and phishing simulation testing that use current, real-world attacks as examples.
Finally, gamifying the cyber-aware culture by rewarding the employee with "Most reported emails" or the "Fastest reporter" promotes contributing to the overall security posture of the organization while keeping reporting engaging and fun.
Reevaluate legacy security systems - In the brief period that generative AI has been available to the public, it has already managed to totally reshape the cybersecurity landscape, so it's imperative that organizations adopt policies that ensure their defensive security capabilities are up to date and "AI ready".
One of the most effective ways of ensuring continued AI readiness is to make the shift from static to adaptive security systems.
Effective, up-to-date policies are foundational to an organization's cybersecurity strategy, and powerful determinants of overall security posture.
While the above list is by no means exhaustive, it should at least give every CISO a good starting point from which to update and refine their own policy documents - and a much-needed head start in the race for AI readiness.
News URL
https://www.helpnetsecurity.com/2024/05/23/cisos-ai-readiness-policies-update/
Related news
- Security boom is over, with over a third of CISOs reporting flat or falling budgets (source)
- The State of the Virtual CISO Report: MSP/MSSP Security Strategies for 2025 (source)
- Security measures fail to keep up with rising email attacks (source)
- Cloud Access Security Broker Policy (source)
- 80% of Critical National Infrastructure Companies Experienced an Email Security Breach in Last Year (source)
- Two-Thirds of Security Leaders Consider Banning AI-Generated Code, Report Finds (source)
- Security leaders consider banning AI coding due to security risks (source)
- Digital Maturity Key to AI Success in Australian Cyber Security (source)
- HackerOne: Nearly Half of Security Professionals Believe AI Is Risky (source)
- Generative AI Security: Getting ready for Salesforce Einstein Copilot (source)