Which pitfalls—model bias, false positives/negatives, data quality, regulatory constraints—often impede AI-based security tools, and how can they be mitigated in a financial-services context?

Data & AnalyticsSecurity & GRC
4.5k viewscircle icon4 Upvotescircle icon3 Comments
Sort by:
Director of Information Security in Finance (non-banking)2 months ago

I wrote a blog post about this topic:
https://www.ismc.at/?p=76

Director2 months ago

Data, especially biased data, is a huge concern. Companies just starting should consider "synthetic data" to test the integrity of their AI. Another pitfall not mentioned is worker bias towards AI, will they use it in the first place?

Lightbulb on1
VP of AI Innovation in Software2 months ago

First and foremost, I would not recommend going down to model level when trying to implement digital security. Use the tools where much of low-level issues you mention are being addressed by tool's product team. Basically, don't build - let others do it right, and use the result of that work.

And for data quality - AI specifically relies on prompts, most of the businesses have data landscape very conductive to contain prompt injections. That must be addressed with great attention, otherwise no matter what AI tools you use, you may get yourself in trouble - the bigger one, the more power such tools have.

Lightbulb on1

Content you might like

Looking at users who have adopted self-serve analytics at your org, how many do you believe are getting the full value of it?

All active users4%

Most active users40%

Half of active users48%

Less than half of active users5%

Only a few active users

None

View Results

Do you expect your cybersecurity program budget to increase or decrease in the next year?

Significantly increase11%

Moderately increase58%

Neither (no change)24%

Moderately decrease4%

Significantly decrease1%

Unsure

View Results

The use of Generative AI in the textile and industrial sectors — for instance in fashion companies or in the creation of marketing content — carries significant risks if not supported by adequate detection and risk management tools. Generative models may unintentionally incorporate elements protected by intellectual property rights, such as registered styles, patented designs, or content belonging to other fashion houses.

A notable example is the “Studio Ghibli” case, where AI-generated works reproduced distinctive, protected features.

In this context, how should Risk Managers equip themselves to prevent and mitigate such risks, ensuring innovation while avoiding legal violations and reputational damage?

The impact of AI on daily life is becoming increasingly significant. 

Falsified, altered, and/or manipulated content is on the rise. 

Do you think AI detection tools will become as common as antivirus software, with everyone having one installed on their device to protect against misinformation?

Read More Comments

With AI adoption accelerating across enterprises, what do you view as the top information security challenge that leaders should address? How can CISOs, VPs and Director’s align governance, risk and security investments to enable AI innovation without creating new exposures?

Read More Comments