The AI, Privacy and Security Agency

Category: Infosec

  • The AI Privacy and Information Security Agency Bulletin: November 2023

    Author Niamh Libonatti-Roche Date 07/12/23 Bulletin Hi,   It’s been a big month for AI, Privacy and Information Security – with so many important moments it felt like the perfect opportunity to start writing a bulletin, for specialists and non-specialists alike, to summarise the news of the month. Each month’s issue will include headline news…

  • Attacks & Acronyms – Puzzle #3

    Havve a little bit of fun on us for, or a distractions from, your commute or someone telling you all about privacy. If you’re interested in what any of these terms mean (or are really bored) then have a look at our glossary below Want to know more read our Glossary below or get in…

  • Privacy Versus Infosec

    Briefing Note: GDPR-ISO-27001-PCI The table below maps GDPR Security requirements against ISO-27001. The infosec aspect of GDPR Art.32 fully satisfied where certification is obtained (GDPR Art.42). As shown in the table below, achieving ISO-27001 certification, leads to a comprehensive level of information security protection that covers all the areas required by GDPR (Art.32). The table…

  • Simplifying NIST AI Risk Management Framework

    Author John Libonatti-Roche Date 10th November 2023 Executive Summary The NIST AI Risk Management Framework (NISTAIRMF 1.0) is a voluntary approach to AI Risk Management that neatly aligns with the Plan-Do-Check-Act model and with standard risk management techniques such as those provided by ISO-31000, ISO-27001 or Prince2. The framework acknowledges the challenging trade-offs between organisational…