Managing GenAI Risks to deliver Value
Scaling GenAI for Growing your Business will require a Trustworthy GenAI Strategy & Sanity check at both a business and societal level.
Organizations are increasingly prioritizing value creation and demanding tangible results from their Generative AI initiatives. This requires them to scale up their Generative AI deployments— advancing beyond experimentation, pilots and proofs of concept.
Proactively addressing and implementing these strategies, organizations can enhance the security posture of their GenAI applications, protect against potential threats, and build trust with users and stakeholders. There are potential and observes risks of GenAI, such as job displacement, misinformation, skills required, fairness and algorithmic biases, physical and digital safety that are known, unknown and anticipatable.
This article is intended for those #buildinggenai products or #buyinggenai products.
Current state of risk understanding and risk mitigation:
Where we are, what unexpected social consequences has the GenAI wave already unleashed?
Sanity Check 1
We have not addressed existing risks; we don't even know all the existing risks when it comes to GenAI but we are continuing the pace of development and entering new dimensions. This can be problematic if left unaddressed.
Did you know breakthroughs in GenAI, vision systems, edge computing, and 5G penetration are poised to propel robotics into unprecedented realms? The field of robotics has now entered a transformative era, propelled by the growing capabilities of generative AI (GenAI). We are witnessing a new wave of robotic innovation, enabling the creation of machines that exhibit exceptional adaptability and efficiency, such as the latest partnership between OpenAI and Figure AI leading to?Bridging digital and robots with GenAI .
Sanity Check 2
Adversaries are increasingly harnessing LLM and Generative AI tools to refine and expedite traditional methods of attacking organizations, individuals, and government systems.
Securing GenAI, is Critical for Securing our Present & Future -
We need GenAI Security, but don't have enough security expertise to identify the unique security challenges. See my podcast from last week on Securing Generative AI, where I speak with Steve Wilson on the enormity of the topic. Steve's new book from O'Reilly is a must read to gain a in depth understanding of the domain.
Sanity Check 3
Current and Future risks as the rate of development maintains its current explosive rate of growth, including AI agents and autonomous AI agents - the 'What is possible' due to the nature of these systems. In order to address risks that can arise, we need a threat modeling mindset at the cognitive modeling stage.
To assess where we are heading and AI future trends, I recommend listening to Fei-Fei Li in her interview this week on "The Future of AI here" where the former head of AI at Google Cloud, talks about her new startup, World Labs, that aims to develop AI systems that understand and interact with the 3D physical world, moving beyond traditional 2D AI models. World Labs is focused on building what they call "large world models" (LWMs) that can perceive, generate, and engage with three-dimensional environments, similar to human spatial intelligence.
Sanity Check 4
Organizations also face the threat of NOT utilizing the capabilities of LLMs such as a competitive disadvantage, market perception by customers and partners of being outdated, inability to scale personalized communications, innovation stagnation, operational inefficiencies, the higher risk of human error in processes, and inefficient allocation of human resources.
Understanding the different kinds of threats and integrating them with the business strategy?will help weigh both the pros and cons of using Large Language Models (LLMs) against not using them, making sure they accelerate rather than hinder the business’s meeting business objectives.
领英推荐
NIST'S AI Risk Management Framework
The Risk landscape is complex, lets review NIST’s guidance: On July 26, 2024, the National Institute for Standards and Technology (NIST) released the?Artificial Intelligence Risk Management Framework: Generative Artificial Intelligence Profile ?(GenAI Profile). The GenAI Profile is designed as a companion resource to NIST’s?AI Risk Management Framework? (AI RMF), released in January 2023, and is intended to function as a technology-specific implementation of the AI RMF aimed at generative artificial intelligence (GenAI).
As GenAI can be used across various contexts, the profile is sector agnostic and is designed to help organizations integrate trustworthiness considerations into the design, development, use, and evaluation of GenAI systems. Distinct from previous guidance produced by NIST, the profile outlines the risks that are unique to GenAI, suggests corresponding actions to manage these risks, and summarizes operational considerations for effective risk management. The GenAI Profile identifies and discusses 12 primary risks that are unique to, or exacerbated by, GenAI:
1.?Chemical, biological, radiological, or nuclear (CBRN) information or capabilities.?GenAI could facilitate access to, or synthesis of, information related to chemical CBRN weapons. 2.?Confabulation. The production of false or misleading content by GenAI may induce users into believing incorrect information.
3.?Dangerous, violent, or hateful content. The creation of inciting, radicalizing, or threatening content by GenAI may promote violence or illegal activities.
4.?Data privacy.?Use and training of GenAI systems may lead to leakage, unauthorized use, or de-anonymization of personal data during the training and use of GenAI systems. 5.?Environmental impacts.?Training and operating GenAI systems may lead to high energy consumption and carbon emissions.
6.?Harmful bias or homogenization.?Societal biases and disparities may be perpetuated or amplified through use of GenAI systems, leading to further discrimination and unfair treatment.
7.?Human-AI configuration.?Inappropriate use or interactions between humans and GenAI systems may lead to human-centric risks, including over reliance and automation bias. 8.?Information integrity.?GenAI could generate and disseminate false or misleading information at scale, potentially eroding public trust.
9.?Information security.?Vulnerability to cyberattacks, such as data poisoning and prompt injection, may potentially compromise GenAI systems and their outputs.
10.?Intellectual property.?Use of protected materials in GenAI training and inputs may lead to infringement of copyrights and other intellectual property rights.
11.?Obscene, degrading, and/or abusive content.?GenAI may generate illegal, abusive, or degrading imagery, including synthetic sexual abuse material and nonconsensual intimate images unless proper guardrails are put in place.
12.?Value chain?and component integration. Integration of nontransparent or third-party components and data may lead to diminished accountability and the possibility of potential errors across the AI value chain. In response to the outlined risks, the GenAI Profile provides several suggested voluntary actions that may be adopted, subject to internal organizational considerations, which can be used to operationalize mitigations and reduce potential for harm. This includes establishing protocols for red teaming GenAI systems, implementing incident response teams that react to emergent harms – such as failing to meet minimum bias and accuracy thresholds – and the integration of GenAI lifecycle considerations into wider AI governance frameworks. These actions closely align with the four core functions outlined in the wider NIST AI RMF – ie, “Govern, Map, Measure, and Manage" – which are also generally regarded as leading industry best practices. Because these suggested actions aim to help manage organizational risk associated with GenAI across all sectors and industries, they are wide ranging and may require experience in organizational governance, AI system design, and AI system testing, among others.
?
Trusted AI? AI GenAI Playbook
Trusted AI GenAI playbook is based on our practical experience and Strategic approach with clients and provides an understanding of some of the risks of working with generative AI, foundation models, and machine learning models. Data Governance roadblocks that can be avoided, Risks mitigation for Traditional AI risks and new risks specifically associated with generative AI.
Generative artificial intelligence (generative AI) has captured the imagination of organizations and is transforming the customer experience in industries of every size across the globe. This leap in AI capability, fueled by multi-billion-parameter large language models (LLMs) and transformer neural networks, has opened the door to new productivity improvements, creative capabilities, and more.
As organizations evaluate and adopt generative AI for their employees and customers, cybersecurity practitioners must assess the risks, governance, and controls for this evolving technology at a rapid pace.
Security & Compliance issues across -
Contact us?For the playbook, GenAI Strategy for revolutionizing your business.
About the author: Pamela Gupta has been voted #3 in Top 20 Global Risk Management and #19 in Top 50 Global Cybersecurity experts for the last 4 years. She has been championing and leading AI Risk Management and Governance, speaking, developing and publishing the criticality of Trustworthy AI for the last six years. She believes Trust is a vital and necessary component in adopting AI and achieving the positive potential of AI.
Subscribe to her podcast on Trustworthy AI: De-Risk Adoption of AI for live and dynamic risks and their solutions. You can select from more than fifteen podcast platforms.
Connect with Pamela and send your feedback, questions, comments. Her company, Trusted AI is helping organizations create sustainable risk based AI Centers of Excellence.
Just posted this on the Sanity Check : https://www.dhirubhai.net/posts/buildingtrustedaiholistically_figure-status-update-openai-speech-to-speech-activity-7244698699610619906-psRK?utm_source=share&utm_medium=member_desktop
Gen AI and Cybersecurity - Leader and Author - Exabeam, OWASP, O’Reilly
2 个月Great write up! I really enjoyed our discussion on your podcast. Thanks for the shoutout to the new book. For those interested, they can check it out here. https://a.co/d/9bBgTq4