close
close
hsuses

CISA conducts first AI security incident response exercise

Theo

Artificial Intelligence and Machine Learning, Governance and Risk Management, Government

US cyber defense agency develops playbook for collaboration on AI security incidents

Chris Riotta (@chrisriotta) •
June 17, 2024


The Cybersecurity and Infrastructure Security Agency is developing a comprehensive framework to unite government, industry and global partners in their response to major security incidents related to artificial intelligence.

See also: OnDemand | Practical strategies to accelerate the adoption of AI in cybersecurity


The U.S. Cyber ​​Defense Agency conducted the federal government’s first AI security incident simulation exercise on Thursday. More than 50 AI experts gathered at Microsoft’s offices in Virginia for the four-hour event. The agency said the exercise is aimed at supporting the development of the AI ​​Security Incident Collaboration Playbook, which is scheduled to be released later this year.


The Joint Cyber ​​Defense Collaborative, CISA’s flagship public-private partnership, organized the exercise and is developing the playbook as part of a special planning initiative called JCDC.AI. According to the agency, the collaborative plans to conduct a second exercise on integrating AI into critical U.S. infrastructure later this year.


CISA Director Jen Easterly said in a statement that the exercise “underscored the importance of developing and deploying AI products that are designed with security as the top priority.”


“As the national coordinator for critical infrastructure security and resilience, we look forward to building on these efforts with our partners and helping organizations secure their AI systems,” she said.

Attendees at the event included the FBI, National Security Agency, Office of the Director of National Intelligence, and the Departments of Defense and Justice. Major AI and software developers – including OpenAI, Microsoft, IBM, Cisco, Cranium AI, Amazon Web Services, and more – were also in attendance.


CISA recently released a series of guidance documents for the public and private sectors to promote the benefits of AI while ensuring systems are protected from new cybersecurity threats. The agency released an AI Roadmap that provides a programmatic structure for adopting AI in cyberdefense missions and improved workplace policies for generative technologies.


The JCDC is also focused on reducing the risk that AI poses to critical infrastructure as a core part of its 2024 priorities, in addition to anticipating new technologies and emerging cybersecurity threats.


“The insights we gain from this exercise will be critical to developing immediate response strategies and shaping the future of AI security,” said Jonathan Dambrot, CEO of Cranium AI, in a statement. He said the JCDC’s upcoming AI Playbook will “serve as an important resource for all stakeholders” and help ensure organizations are “prepared and resilient to AI-related threats.”


Bryan Vorndran, deputy director of the FBI’s Cyber ​​Division, said the exercise showed that with proper coordination, both sectors are better prepared to deal with cyber threats.


“We are stronger when we come together to share information and determine best practices in the evolving AI landscape,” Vorndran said.

Related Posts