Cybersecurity News in Asia

RECENT STORIES:

SEGA moves faster with flow-based network monitoring
Closing the gap in Zero Trust implementation: What you need to conside...
Solving data protection challenges in an era of cloud and AI
42Gears Launches SureIdP — Zero Trust Identity and Access Manage...
42Gears Launches SureIdP — Zero Trust Identity and Access Manage...
Will robocall fraud start to decline in 2026 with stronger regulations...
LOGIN REGISTER
CybersecAsia
  • Features
    • Featured

      Solving data protection challenges in an era of cloud and AI

      Solving data protection challenges in an era of cloud and AI

      Wednesday, June 18, 2025, 11:12 AM Asia/Singapore | Data Protection, Features
    • Featured

      Will your organization’s defenses be breached due to your suppliers’ weak cybersecurity?

      Will your organization’s defenses be breached due to your suppliers’ weak cybersecurity?

      Thursday, May 29, 2025, 5:04 PM Asia/Singapore | Features
    • Featured

      How the UAE proactively protects its digital economy

      How the UAE proactively protects its digital economy

      Monday, May 19, 2025, 2:16 PM Asia/Singapore | Features
  • Opinions
  • Tips
  • Whitepapers
  • Awards 2025
  • Directory
  • E-Learning

Select Page

LOGIN REGISTER
  • Features
    • Featured

      Solving data protection challenges in an era of cloud and AI

      Solving data protection challenges in an era of cloud and AI

      Wednesday, June 18, 2025, 11:12 AM Asia/Singapore | Data Protection, Features
    • Featured

      Will your organization’s defenses be breached due to your suppliers’ weak cybersecurity?

      Will your organization’s defenses be breached due to your suppliers’ weak cybersecurity?

      Thursday, May 29, 2025, 5:04 PM Asia/Singapore | Features
    • Featured

      How the UAE proactively protects its digital economy

      How the UAE proactively protects its digital economy

      Monday, May 19, 2025, 2:16 PM Asia/Singapore | Features
  • Opinions
  • Tips
  • Whitepapers
  • Awards 2025
  • Directory
  • E-Learning
Tips

8 tips for data and generative AI governance  

By CybersecAsia editors | Wednesday, February 5, 2025, 11:23 AM Asia/Singapore

8 tips for data and generative AI governance  

To help financial firms understand and mitigate the risks posed by implementing generative AI, FS-ISAC has published step-by-step guidance titled More Opportunity, Less Risk: 8 Steps to Manage Financial Services Data with GenAI.

“GenAI presents enormous opportunities for financial firms to improve business operations, provide better customer service, and even improve their cybersecurity posture,” said Michael Silverman, Chief Strategy & Innovation Officer, FS-ISAC. 

“However, just like any new technological development, GenAI increases security risks when it’s not leveraged in a safe and compliant manner. This guidance allows financial institutions to experience the positive offerings of GenAI by outlining the risks and corresponding steps to mitigate the threats.”

Developed by FS-ISAC’s Artificial Intelligence Working Group, the guideline outlines eight foundational steps to developing an effective data governance approach that harnesses the benefits of GenAI while remaining compliant with security standards:

  1. Consider your risks: Many of the risks associated with traditional data governance can be exacerbated by GenAI. Developing policies, technical controls, clear roles and responsibilities, and accountability metrics, among other steps, can shed light on risks, gaps, and opportunities.
  2. Data selection criteria: Using datasets requires an accountable, cautious approach with constant oversight. Develop a clear path for data selection, then conduct periodic risk testing to make sure the controls to protect the datasets are working as intended.
  3. Create and maintain a data lineage inventory: Strong access controls, data sanitization practices, and accurate data classifications are necessary to counteract concerns around data lineage and traceability.
  4. Be disciplined with data access and authorization: GenAI training data should be segregated and access restricted to ensure models are training on the correct data. Establish a regular review cadence of datasets and their access.
  5. Obsessively protect your customers’ data: Security techniques including differential privacy, encryption in transit and at rest, data sanitization, and sandboxing should be leveraged to maintain the confidentiality, integrity, and availability of sensitive information.
  6. Use best practices when building effective test plans: Generate baselines for model testing and leverage cross-sector data sharing to ensure adequate coverage across a domain. Understanding the reliability and completeness of underlying data allows for stronger model testing with fewer limitations. 
  7. Keep current on model vulnerabilities: Fundamental data governance security practices combined with basic cybersecurity hygiene can alleviate vulnerabilities created by the growing threat landscape.
  8. Require your vendors’ transparency on your data storage: Establish transparent communication with all vendors to ensure activities are compliant with regional and international requirements, as well as the firm’s internal security standards.

GenAI use cases and risks are still evolving, and while GenAI offers great potential for financial services processes, the sector has many concerns about data security, usage, privacy, and compliance. This report is designed to help financial institutions assess their needs and determine a secure and effective approach to using GenAI in data governance. 

The report is available for download here. 

Share:

PreviousStrengthening payment security against AI threats
NextGenerative AI chatbots can be jailbroken, research suggests

Related Posts

How to steal a keyless-entry car in 5 steps

How to steal a keyless-entry car in 5 steps

Friday, March 5, 2021

Financial institutions in Asia need to address risk management holistically: survey

Financial institutions in Asia need to address risk management holistically: survey

Friday, February 3, 2023

Understanding the lifecycle of a compromised email account

Understanding the lifecycle of a compromised email account

Monday, July 27, 2020

Expert views for World Backup Day

Expert views for World Backup Day

Thursday, March 31, 2022

Leave a reply Cancel reply

You must be logged in to post a comment.

Voters-draw/RCA-Sponsors

Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
previous arrow
next arrow

CybersecAsia Voting Placement

Gamification listing or Participate Now

PARTICIPATE NOW

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

  • 2024 Insider Threat Report: Trends, Challenges, and Solutions

    2024 Insider Threat Report: Trends, Challenges, and Solutions

    Insider threats continue to be a major cybersecurity risk in 2024. Explore more insights on …Download Whitepaper
  • AI-Powered Cyber Ops: Redefining Cloud Security for 2025

    AI-Powered Cyber Ops: Redefining Cloud Security for 2025

    The future of cybersecurity is a perfect storm: AI-driven attacks, cloud expansion, and the convergence …Download Whitepaper
  • Data Management in the Age of Cloud and AI

    Data Management in the Age of Cloud and AI

    In today’s Asia Pacific business environment, organizations are leaning on hybrid multi-cloud infrastructures and advanced …Download Whitepaper
  • Mitigating Ransomware Risks with GRC Automation

    Mitigating Ransomware Risks with GRC Automation

    In today’s landscape, ransomware attacks pose significant threats to organizations of all sizes, with increasing …Download Whitepaper

Middle-sidebar-banner

Case Studies

  • St Luke’s ElderCare enhances operations and capabilities through a centralized secure, scalable network

    St Luke’s ElderCare enhances operations and capabilities through a centralized secure, scalable network

    With only a small IT team, the digital transformation has united operations across 30 locations, …Read more
  • Automating border control and security with facial recognition technology

    Automating border control and security with facial recognition technology

    Indonesia Immigration & Seaport Authorities enhances security and speeds up border control queues at Batam …Read more
  • Securing wealth advisory services without unnecessary friction: Endowus

    Securing wealth advisory services without unnecessary friction: Endowus

    The wealth advisory platform demonstrates its non-negotiable commitment to a robust security posture through partnering …Read more
  • LifeTech group sets up next-gen security operations center in Malaysia

    LifeTech group sets up next-gen security operations center in Malaysia

    By partnering with a unified cybersecurity platform, the firm will be offering cost-effective advanced SOC …Read more

Bottom sidebar

  • Our Brands
  • DigiconAsia
  • MartechAsia
  • Home
  • About Us
  • Contact Us
  • Sitemap
  • Privacy & Cookies
  • Terms of Use
  • Advertising & Reprint Policy
  • Media Kit
  • Subscribe
  • Manage Subscriptions
  • Newsletter

Copyright © 2025 CybersecAsia All Rights Reserved.