Episode 377 - Artificial Intelligence and Operational Resiliency
Mark Orsi is the Chief Executive Officer of Global Resilience Federation (http://w.grf.org/), (GRF) a non-profit with the mission to develop and support threat intelligence and information sharing communities including education, operations technology, financial services, retail and hospitality, legal and professional services, energy, health, and oil and natural gas.\xa0Launched in 2017 as a standalone company, from a former Financial Services Information Sharing and Analysis Center (FS-ISAC) division, GFR is the evolution of 1998's U.S. Presidential Decision Directive 63 and 2003's Homeland Security Presidential Directive 7 which mandated that the public and private sectors share information about cyber and physical security threats and vulnerabilities to help protect critical infrastructure.\xa0Mr. Orsi led strategic efforts for several prominent Fortune 100 companies, working directly with CIOs and CISOs to develop, deploy, and improve security controls protecting the confidentiality, integrity, and availability of sensitive information.\xa0Mark joined the company from JPMorgan Chase where he served as executive director and product owner for cybersecurity and technology controls. Prior to JPMorgan, Mr. Orsi served KPMG as director of cybersecurity, and Goldman Sachs as vice president of technology risk.\xa0Mark holds an MBA from Columbia Business School, an MS in computer science from Johns Hopkins University, and a BS in Aerospace Engineering from the University of Maryland\xa0In this interview, Mark shared the latest in artificial intelligence, and operational resiliency.\xa0Artificial intelligence\xa0Mark highlights how the latest AI innovations powered by large language model differ from the previous iterations of AI technologies such as democratising the cyberattacks tools used by nation state actors and leveraging dynamic datasets in training AI models.He also notes how cyber defenders are adopting the technology to \u201cmultiply\u201d the efforts of resources, for example, in code development and testing.\xa0He also foresees that such technology would empower cyber defenders to deliver more targeted threat intelligence.\xa0Through a personal story, Mark illustrates how the technology lowers the barriers of entry for hacktivists and other threat actors, and the importance of exercising extra vigilance \u2013 including understanding how the third parties in the supply chain are using AI.\xa0He also notes that an \u201cAI\u201d SBOM (akin to the software SBOM) could help to address the AI model and data supply chain concerns.\xa0Operational resiliency\xa0Mark introduces the Operational Resilience Framework (ORF) launched by Global Resilience Federation\u2019s Business Resilience Council (BRC (https://www.grf.org/brc)) to solve the challenge of providing services in an impaired state.\xa0For example, while businesses may have robust processes in place for backing up business or customer data for regulatory reasons, less attention may be paid to backup data such as system images or active directory, network configurations \u2013which would minimize service disruptions in the face of destructive attacks and events.\xa0He also explains that ORF was developed to be broadly applicable and is aligned with existing controls like those from NIST and ISO.\xa0Some useful links and contacts:* BRC: https://www.grf.org/brc (https://www.grf.org/brc)* Operational Resilience Framework: https://www.grf.org/orf (https://www.grf.org/orf)* Leadership Guide to AI Security - https://www.grf.org/the-leadership-guide-to-securing-ai (https://www.grf.org/the-leadership-guide-to-securing-ai)* Practitioners\u2019 Guide to AI Security -