{"id":313603,"date":"2026-04-05T04:06:32","date_gmt":"2026-04-04T22:36:32","guid":{"rendered":"https:\/\/ebiztoday.news\/?p=313603"},"modified":"2026-04-05T04:06:32","modified_gmt":"2026-04-04T22:36:32","slug":"how-flexibility-and-ambassadors-can-secure-the-ai-enabled-enterprise","status":"publish","type":"post","link":"https:\/\/ebiztoday.news\/index.php\/2026\/04\/05\/how-flexibility-and-ambassadors-can-secure-the-ai-enabled-enterprise\/","title":{"rendered":"How flexibility and ambassadors can secure the AI-enabled enterprise\u00a0"},"content":{"rendered":"
\n

It\u2019s now widely accepted that artificial intelligence will permeate nearly every aspect of our lives. That presents recent challenges related to AI threats, enterprise AI management and adapting security programs for an increasingly AI-driven world.<\/p>\n

What matters most in assessing your risk exposure is to know what sort of AI is getting used. There\u2019s a direct correlation: More modern generative and agentic AI can expose us to greater threats. Lack of transparency with gen AI apps makes it harder for security teams to get vital visibility into where potentially sensitive data goes.<\/p>\n

The convenience and accessibility of AI tools often outweigh users\u2019 perceived security risks, making a cycle of adoption and potential exposure. To effectively counter these evolving threats, organizations must adapt their security programs. With that in mind, let\u2019s explore strategies to forestall these challenges from manifesting across various organizational domains.<\/p>\n

Fostering flexibility<\/h3>\n

A key area for transformation is rethinking approval workflows for AI use. Traditional security models, often characterised by binary yes\/no or allow\/block decisions, are too rigid for the dynamic nature of AI. As a substitute, security teams must embrace more flexible approaches, potentially including opt-in\/opt-out models for certain AI functions, especially when customer or regulated data is involved.<\/p>\n

One strategy I\u2019m implementing with my team is setting clear parameters for what users can and may\u2019t use. The goal is to shift security from a bottleneck that impedes innovation to an enabler of secure AI adoption, with clear lines of in- and out-of-bounds activities.<\/p>\n

Yes, there’s at all times going to be a layer of shadow AI\u00a0and agentic AI to maintain a watch out for as those expand your attack surface, but there\u2019s also a necessity to reply to legitimate requests from business units. It\u2019s necessary to have a system that reduces the friction of processing and auditing requests for brand new tools as they are available from other teams inside the organization.<\/p>\n

I began by in search of trusted platforms and partners, and finding ways to process and approve requests for those tools faster. I call this a \u201cyellow light\u201d process, wherein you could have the choice to hurry up or hit the brakes. This implies finding the 2 questions that absolutely should be answered a few tool to get this trusted platform or partner approved. For instance, we may ask, \u201cAre you learning from my data?\u201d and \u201cWhat controls do you could have in place for us to have the option to show this tool on or off if we’d like to?\u201d<\/p>\n

This enables us to hurry a review that after took days into just quarter-hour. Now, teams have a level of flexibility to make use of the tools they need without sacrificing the vital layers of security.<\/p>\n

The ability of AI ambassadors<\/h3>\n

Lots of us are accustomed to the concept of getting \u201csecurity champions\u201d inside a company, but I’m also an enormous proponent of \u201cAI ambassadors.\u201d These\u00a0 programs seek to have interaction and empower business units to tackle a greater share of AI governance responsibilities.<\/p>\n

AI ambassadors are people from across teams and departments, who know the principles around AI tools, and may encourage their teams to follow them. Essentially, they operate as an extension of the safety team, bringing a layer of accountability that makes sure their colleagues are following the right procedures in selecting and using AI tools. They will inventory their team\u2019s apps and request reviews of the approval process, giving them more investment in ensuring the ways their very own team is using AI are secure and in keeping with broader security policies.<\/p>\n

By training and equipping AI ambassadors inside different departments, organizations can decentralize a number of the initial security review processes. The ambassadors are liable for understanding and adhering to AI governance policies, ensuring that security considerations are integrated from the outset with any recent tool brought into the organization.<\/p>\n

Security Champions and AI Ambassadors aren\u2019t the identical. Keeping the teams distinct from one another fosters a culture of shared responsibility, enabling faster deployment of AI solutions while maintaining a customer-focused governance and robust security posture.<\/p>\n

AI ultimately doesn\u2019t require major changes but smaller strategic adjustments to existing strategies to alleviate a number of the friction for end users and foster a greater security culture.<\/p>\n

By understanding the true nature of AI-driven threats, addressing the unique nature of managing AI and fostering a culture of shared security responsibility, organizations not only mitigate risks but additionally harness the technology\u2019s full potential.<\/p>\n

James Robinson is the chief information security officer at Netskope Inc. He wrote this text for SiliconANGLE.<\/em><\/p>\n

Image: SiliconANGLE\/Ideogram<\/h5>\n
\n
\n

Support our mission to maintain content open and free by engaging with theCUBE community. Join theCUBE\u2019s Alumni Trust Network<\/strong>, where technology leaders connect, share intelligence and create opportunities.<\/p>\n