CIOs and CISOs Take on NIS2: Key Challenges, Security Opportunities

By / Blog / ,

NIS2 compliance poses significant challenges for CIOs and CISOs, impacting operations and budgets. The directive, aiming for unified cybersecurity standards across EU states, demands extensive resources, reshaping IT leadership roles. While some firms find compliance burdensome, those with prior ISO/IEC 27001 certification experience smoother transitions. The emphasis on dedicated cybersecurity roles underscores the urgent need for skilled professionals, pushing organizational strategies towards proactive security rather than mere compliance. Overall, NIS2 presents both challenges and opportunities for enhancing organizational security posture.

https://www.csoonline.com/article/3845430/nis2-the-time-for-compliance-has-come-but-the-race-for-cios-is-not-over.html

AI Project Failure Rates Are on the Rise: Report

By / Blog /

AI project failures rising: 42% of businesses abandoned initiatives in 2025, up from 17% in 2024 (S&P Global). Main obstacles: cost, data privacy, security. Enterprises struggle to transition pilots to production, emphasizing need for selective AI use to reduce failures. Embracing failed projects fosters a culture of experimentation, leading to better future outcomes.

https://www.ciodive.com/news/AI-project-fail-data-SPGlobal/742590/

GPAI Code of Practice

By / Blog / , ,

GPAI Code of Practice: EU's AI Act mandates GPAI providers, like GPT and Llama, to comply with copyright laws and create a Code of Practice for adherence. The 3rd Draft simplifies requirements, stressing proportional compliance based on provider size. Key areas include: establishing a copyright policy, responsible web crawling practices, identifying TDM opt-outs, mitigating copyright infringement risks, and appointing a copyright contact. The finalized Code is expected by May 2025, and stakeholder feedback is open until March 30, 2025.

https://www.taylorwessing.com/en/insights-and-events/insights/2025/03/gpai-code-of-practice

EU Draft AI Code Faces Industry Pushback

By / Blog / , ,

EU's draft AI code faces industry backlash due to concerns over copyright, risk assessments, and transparency. Tech groups argue the rules are overly burdensome and may stifle innovation, particularly regarding mandatory third-party risk assessments. Critics highlight inadequate protections for fundamental rights and copyright law. Feedback on the draft is open until March 30, with a final version expected in May.

https://dig.watch/updates/eu-draft-ai-code-faces-industry-pushback

EIOPA Publishes Consultation on Opinion on AI Governance and Risk Management

By / Blog / , ,

EIOPA released a consultation on AI governance and risk management for insurance. The Opinion guides insurance entities on AI use, emphasizing risk assessment, proportional governance, ethics, data management, and accountability. It highlights the importance of fairness, transparency, and documentation, while encouraging a customer-centric approach and regular review of AI strategies. Adequate data governance and redress mechanisms are mandated, not introducing new laws but clarifying existing regulations. Feedback is due by May 12, 2025.

https://datamatters.sidley.com/2025/03/14/eiopa-publishes-consultation-on-opinion-on-ai-governance-and-risk-management/

Improving Cybersecurity By 1% At a Time

By / Blog /

Cybersecurity improvement doesn't require huge investments, just consistent, incremental changes. Focus on 1% enhancements like regular system updates, strong password policies, employee training, network segmentation, and reliable data backups. These small steps collectively provide substantial protection against threats, promoting a culture of persistence over perfection.

https://www.forbes.com/councils/forbestechcouncil/2025/03/13/improving-cybersecurity-by-1-at-a-time/

Encryption, AI Risks and Policy Chaos: What’s Next for Cybersecurity?

By / Blog / ,

Cybersecurity faces rapid evolution due to disruptive technologies, regulations, and geopolitical factors. Key issues include U.S. government agency restructuring affecting security, the UK seeking backdoor access to encrypted data, and the impending threats of quantum computing on encryption. While AI offers benefits, it also raises risks like advanced cyberattacks. Organizations must prioritize proactive security measures and adaptability to thrive amidst these challenges.

https://www.morphisec.com/blog/encryption-ai-risks-policy-chaos-future-of-cybersecurity/

5 Questions to Ask Before Deploying Agentic AI

By / Blog /

CIOs must consider five key questions before deploying agentic AI:

  1. What specific problem will it solve?
  2. Is there sufficient and suitable data to support it?
  3. How will data security be ensured?
  4. How does it align with the company's overall tech strategy?
  5. What monitoring processes will be in place to maintain its effectiveness?

These considerations are crucial for successful AI integration, particularly regarding security and relevance.

https://www.ciodive.com/news/5-questions-agentic-AI-CIO/742296/

Scroll to Top