IDC PeerScape: Practices to Develop AI Security Policies

This IDC PeerScape, which is based on interviews with CIOs and CISOs from global organizations representing diverse industries and geographies, offers guidance on how IT leaders can help their organizations develop security policies that address the unique challenges posed by AI.“AI may still feel new, but now is the time for enterprises to bake AI-related protections into their formal security policies,” says Chris Tozzi, adjunct research advisor for IDC’s IT Executive Programs (IEP). “The sooner IT leaders perform this important work, the sooner they can bring clarity, consistency, and proactive protection to the task of mitigating the special risks and threats that arise from AI.”


IDC PeerScape Figure

Executive Summary

Peer Insights

Practice 1: Evaluate Existing Policies to Decide Whether AI Requires Policy Replacement or Simple Updates

Challenge

Examples

Global Insurance Provider

DC Water

Lemongrass

Guidance

Practice 2: Make Policy Rules and Language Clear But Don’t Include Overly Specific Practices or Procedures

Challenge

Examples

Global Insurance Provider

DC Water

Lemongrass

Guidance

Practice 3: Include Auditors, Compliance Officers, AI Experts, and Others in Security Policy Discussions

Challenge

Examples

Global Insurance Provider

DC Water

Lemongrass

Guidance

Download our eBook: How to Succeed Using Market Research

Learn how to effectively navigate the market research process to help guide your organization on the journey to success.

Download eBook
Cookie Settings