SANS Institute Unveils Secure AI Blueprint For Safe Adoption And Risk Management

In a move to address the rapid integration of artificial intelligence (AI) into global operations, the SANS Institute has unveiled a comprehensive guide titled "Own AI Securely". This innovative blueprint offers organisations a systematic approach to securely incorporating AI technologies.

It aims to navigate the complex challenges of AI safety, compliance, and operational management that companies worldwide are currently facing. The need for such a structured model stems from the increasing reliance on AI systems that outpace the capabilities of existing security measures.

This guide is especially crucial for security teams in both the public and private sectors, who must adapt to defend evolving systems and acquire new skills to manage the demands of enterprise-scale AI and its workforce effectively.

Rob T. Lee, chief of research and chief AI officer at the SANS Institute, emphasised the dynamic nature of AI and the emerging risks it presents. "As roles related to AI rapidly shift and new risks constantly emerge, organisations need to keep up with this pace of change and respond decisively," Lee stated.

He highlighted the blueprint's role in providing a well-defined structure to an area previously lacking in direction, enabling security leaders to act with certainty and resolve. The blueprint, enriched with field-tested insights, is designed to assist organizations in navigating the complexities of AI deployment securely.

The Secure AI Blueprint delineates a tripartite model that encompasses Protect AI, Utilize AI, and Govern AI. This framework is aligned with 14 leading industry training courses and a set of GIAC certifications, tailored to suit various organizational roles. This ensures the development of a highly skilled cybersecurity workforce adept in AI technology.

Protect AI focuses on safeguarding AI systems against attacks such as poisoning, prompt attacks, and data leaks, through stringent controls on access, data, deployment, and monitoring.

Utilize AI encourages cybersecurity teams to leverage AI within security operations centers and other cybersecurity domains, using AI-powered tools to enhance detection, triage, and response capabilities.

Lastly, Govern AI stresses the importance of accountability at the management and board levels, advocating for clear oversight, compliance with frameworks, and AI fluency to ensure regulatory alignment, policy strength, and strategy effectiveness, all while fostering trust.

AI in the UAE: A National Strategy

The UAE is at the forefront of integrating AI into its governance, societal well-being, economic growth, and diversification plans. The UAE National Strategy for AI 2031 envisions AI as a central pillar of the country's future prosperity, aiming to drive growth, enhance efficiency, and support sustainability.

This strategic emphasis is backed by significant investments, with global AI spending expected to exceed $300 billion by 2026. AI's impact on the UAE's GDP could reach 13.6% by 2030, as estimated by PwC, highlighting the nation's commitment to becoming a leader in AI adoption.

The SANS Institute's new blueprint responds to the evolving AI landscape and the demands it places on organisations to adapt swiftly and securely. By offering structured, practical guidance, the initiative seeks to empower organisations to harness the potential of AI technologies while ensuring their operations remain secure, compliant, and operationally efficient.

Lee further reinforced the blueprint's value by stating, "The blueprint is based on what's already changing inside real organizations. Leaders are not looking for more generic headlines about how the threat landscape is evolving fast, they're looking for a way to act."