B. Stephanie Siegmann, partner, co-chair of the Artificial Intelligence (AI) and Cybersecurity, Privacy & Data Protection Groups, and chair of the International Trade & National Security Group, shared her unique perspective with The Business Journals on how companies can proactively mitigate their AI-related regulatory exposure.
In the article, Stephanie cites that companies should conduct a risk assessment and document findings before deploying any AI systems or tools:
“Companies are in a rush because the company next door is already doing something, so you think you’ve got to move fast. When you move fast, you cut corners, and sometimes when those corners get cut, you make changes to the AI tool without incorporating the cybersecurity requirements or standards that you would have if you had more time.”
Stephanie emphasizes the importance of monitoring user behavior to understand how AI tools are being utilized and what data is being input. She urges companies to restrict access to risky generative AI models or commercial tools, such as DeepSeek, due to significant security vulnerabilities. She also stresses the need for organizations to disclose how they are using AI tools, ensuring appropriate notice and consent from consumers.
“AI can be a really powerful tool for cybercrime and really has supercharged the amount of cybercrime that we’re seeing.”
Read the full article on The Business Journal’s website.
