Blog – Page 20 – CIO.works

Companies Know AI Is Essential for Cyber Defense but Aren’t yet Seeing Returns

By CIO / Blog / AI, cybersecurity, report

A new EY survey reveals that while nearly all cybersecurity leaders see AI as essential for defense and are deploying it, most have yet to realize significant returns from agentic AI security tools. The survey highlights companies' progress in adopting AI governance frameworks but notes that full integration into corporate culture is limited, stressing the need for robust governance and human oversight to maximize AI’s benefits and manage risks effectively.

https://www.cybersecuritydive.com/news/cybersecurity-ai-agentic-governance-ey-survey/815311/

We Asked Experts About the Most Responsible Ways to Use AI Tools – Here’s What They Said

By CIO / Blog / risk management, AI, productivity

Three years after ChatGPT's release, AI use divides people into those who refuse it and those who use it daily. Experts advise using AI as a brainstorming partner, research assistant, and organizer while maintaining personal judgment, cautioning against overreliance and emphasizing the need to verify AI-generated information with credible sources.

https://www.theguardian.com/lifeandstyle/ng-interactive/2026/mar/18/how-to-use-ai-tools-expert-guide

Cisa Urges Endpoint Management System Hardening After Cyberattack Against US Organization

By CIO / Blog / risk management, cybersecurity, compliance, Microsoft

The Cybersecurity and Infrastructure Security Agency (CISA) issued an alert following a cyberattack on U.S.-based medical technology firm Stryker Corporation targeting their Microsoft environment. CISA urges organizations to harden endpoint management system configurations by implementing Microsoft’s best practices for securing Microsoft Intune, including least privilege administrative roles, phishing-resistant multi-factor authentication, and multi-admin approval policies, to protect against similar malicious activities.

https://www.cisa.gov/news-events/alerts/2026/03/18/cisa-urges-endpoint-management-system-hardening-after-cyberattack-against-us-organization

Disinformation Security By Styx Intelligence

By CIO / Blog / tools, threats, monitoring

Styx Intelligence has launched Disinformation Security, a solution designed to provide continuous visibility into disinformation campaigns that threaten brands, leaders, and customers through false narratives and coordinated activities on public channels. This tool helps organizations detect early signs of disinformation, understand its origins and spread, and respond effectively to mitigate risks such as fraud, impersonation, reputation damage, and operational disruptions.

https://styxintel.com/blog/introducing-disinformation-security/

Shadow AI Has Already Moved Into Your Organization

By CIO / Blog / risk management, AI, cybersecurity, security controls

The article explains that “shadow AI” is already widespread in organizations, as employees use public or unapproved AI tools to speed up work without going through IT or security review. Because these tools can be accessed instantly in a browser, blocking them is often ineffective, resulting in lost visibility into how company data is used. The article concludes that organizations must shift from trying to prohibit AI use to creating governance frameworks, approved tools, and clear policies that enable productivity while maintaining security and compliance.

https://www.forbes.com/sites/tonybradley/2026/03/19/shadow-ai-has-already-moved-into-your-organization/

Broadcom Delivers the World’s First End-to-End PQC-safe, In-flight Network Encryption Solution

By CIO / Blog / encryption, network, post-quantum, cybersecurity, technology

Broadcom Inc. has announced the shipment of the world’s first end-to-end Post-Quantum Cryptography (PQC)-safe, in-flight network encryption solution, integrated into Everpure's FlashArray storage platform via Emulex SecureHBAs. This solution enables automatic, high-performance encryption of all in-flight Fibre Channel data, protecting against future quantum computing threats and complying with CNSA 2.0 and NIS2/DORA standards without impacting system performance or existing storage services.

https://investors.broadcom.com/news-releases/news-release-details/broadcom-delivers-worlds-first-end-end-pqc-safe-flight-network

What It Takes to Level up Your Org’s AI Maturity

By CIO / Blog / strategy, AI, leadership

In an interview with AI transformation practitioners Afshean Talasaz and Zar Toolan, key insights are shared on how organizations can advance their AI maturity from initial adoption to driving significant business impact. They emphasize the importance of a combined innovator-operator leadership mindset, detailed preparation, and aligning AI investments with long-term business strategies, supported by strong C-suite and CEO commitment. This approach helps companies move beyond treating AI as an operational tool to embedding it as a strategic asset that delivers measurable value and competitive advantage.

https://www.cio.com/article/4146645/what-it-takes-to-level-up-your-orgs-ai-maturity.html

AI Without Sovereignty Is Just Outsourced Intelligence

By CIO / Blog / strategy, AI, leadership

In his opinion piece, Floyd DCosta argues that enterprises adopting AI often gain capability but lack sovereignty—control over how AI models and data are used—creating long-term risks and dependencies on third-party vendors. He emphasizes AI sovereignty as essential, encompassing governance, transparency, data and model control, operational autonomy, and strategic independence, warning that without it, organizations may inadvertently cede their competitive intelligence and face regulatory and operational challenges.

https://www.cio.com/article/4147102/ai-without-sovereignty-is-just-outsourced-intelligence.html

Deterministic AI: What It Is and When to Use It

By CIO / Blog / AI, automation

Deterministic AI refers to systems that produce the same output every time they receive the same input, combining AI’s ability to interpret data with deterministic workflows that ensure consistency and control. This hybrid approach uses probabilistic AI models to analyze and classify inputs while embedding their outputs in rule-based automation that executes reliably, making it ideal for enterprise workflows needing predictable, repeatable results. Zapier exemplifies this by orchestrating AI-powered workflows that maintain deterministic execution, blending AI’s flexibility in understanding complexity with automation’s dependability.

https://zapier.com/blog/deterministic-ai/

Focus Areas When Implementing Data Protection by Design and by Default in 2026

By CIO / Blog / data protection, regulation, privacy, compliance, GDPR

Data protection by design and by default, a key principle of the EU GDPR, remains inconsistently implemented nearly a decade after its adoption, requiring organizations to consider four main factors—state of the art, cost of implementation, processing context, and risks to individuals—for effective compliance. In 2026, evolving technologies and regulations, especially concerning AI, demand a dynamic, risk-based approach that integrates ongoing assessment and adaptation of technical and organizational measures from the system design stage through deployment to safeguard personal data and uphold individuals' rights.

https://iapp.org/news/a/focus-areas-when-implementing-data-protection-by-design-and-by-default-in-2026