Regulatory challenges and cybersecurity solutions: DORA, NIS2, and the EU AI Act – Cyberevolution insights part 2

In this article:

• European AI Act Overview: Effective August 1, 2024, the Act categorizes AI systems by risk levels, imposing stricter rules on high-risk applications, especially in sectors like banking and financial services.
• Compliance Requirements: Banks must adhere to EU financial services law governance and perform Fundamental Rights Impact Assessments for credit evaluations under the Act.
• AI in Cybersecurity: AI enhances cybersecurity through anomaly detection, self-learning, and rapid incident response but requires responsible implementation.
• Expert Recommendations: Martin Kuppinger advises CISOs to establish robust AI governance, pilot generative AI for threat modeling, and focus on ethical AI use.
• Risk Mitigation: Dr. Kipker highlights the importance of advanced technical and organizational measures to counter the inherent risks of AI.