Tactical solutions when using generative AI
16 August 2023
Firms need to embrace the opportunities that AI presents, whilst being mindful of the potential risks that they are exposed to. Whilst developing your strategic plans to introduce AI into your operational estate there are some tactical solutions and controls you can adopt now to help manage the risks and encourage responsible use of public generative AI (GenAI) across your organisation.
Organisational controls
 |
 |
 |
| AI policy | Boundary controls | Enteprise license |
| Document a corporate policy that defines and informs acceptable use by employees. | Configure existing technology (such as CASB, DLP, web filters, network hardware, firewalls) to control access or monitor use of web based GenAI services. | Opt for licensed versions of web based GenAI services that have additional features to manage usage, history, data privacy and security. |
Individual controls
 |
 |
 |
| Data governance | User preferences | User credentials |
| Refrain from uploading personal, corporate, or sensitive information that may be intercepted or accessed by malicious actors. | Update the user settings in your GenAI service to prevent storage of data or its use in training the model. | Use anonymous / pseudonymous accounts when subscribing and interacting with GenAI services. |
Guardrails, training and awareness
 |
 |
 |
| Risk appetite | Employee communication | Employee education |
| Define your risk appetite from the top down, agree what risk you are prepared to accept in the short term through using GenAI. | Engage in ongoing communication with employees, informing them on the BAU activities that can/should be enriched through the use of GenAI and those that should be avoided. | Educate employees on the disinformation and discrimination risks when using GenAI, from either data bias, knowledge gaps, fabrication or even infiltration. |
Given the pace of change, organisations must keep one eye on the external environment. New regulations, third party considerations, client and customer expectations, are all changing. With their other eye, organisations should consider which functional teams may need to evolve their current ways of working to accommodate these emerging external requirements and what changes may be required to their internal operating models.
To learn more about how to develop your strategic plans around AI, please contact us.
Our Experts
Related Insights
U.S. Treasury central clearing rule delay
The SEC extends the Treasury clearing deadline to 2026/2027. Learn how firms can use this time to enhance readiness and ensure a smooth transition to central clearing.
Read more
Your guide for navigating CPS 230 compliance
Get ready for CPS 230 compliance before July 2025. Our guide helps you identify critical actions and prioritise for day one compliance.
Read more
Cyber incident management: is your financial services firm ready?
Disruptive incidents are increasingly the norm. We outline three essential actions you must take to build your firm's risk readiness and resilience today.
Read more
Australian financial services regulation
Australia’s financial services companies face a wave of new regulations requiring a strategic approach.
Read moreIs digital and AI delivering what your business needs?
Digital and AI can solve your toughest challenges and elevate your business performance. But success isn’t always straightforward. Where can you unlock opportunity? And what does it take to set the foundation for lasting success?