{"version":"1.0","type":"rich","provider_name":"Acast","provider_url":"https://acast.com","height":250,"width":700,"html":"<iframe src=\"https://embed.acast.com/$/6702dcb9c88f09c3e0b9a10a/67d23656ba1ef91ed08184ce?\" frameBorder=\"0\" width=\"700\" height=\"250\"></iframe>","title":"AI Governance: Insights on ISO 42001 from GRC Two Experts","thumbnail_width":200,"thumbnail_height":200,"thumbnail_url":"https://open-images.acast.com/shows/6702dcb9c88f09c3e0b9a10a/1741829346506-7aca08ae-5a39-4dda-9d8c-ef1741f66345.jpeg?height=200","description":"<p>The latest episode of GRC Uncensored dove deep into the magical world of AI governance, specifically on ISO 42001. This week, our guests are <a href=\"https://www.linkedin.com/in/ichirohonda/\" rel=\"noopener noreferrer\" target=\"_blank\">Chris Honda</a>, Whistic’s Manager of Security, Risk, and Compliance; and <a href=\"https://www.linkedin.com/in/jlebaron-qgrc/\" rel=\"noopener noreferrer\" target=\"_blank\">Jonathan LeBaron</a>, MasterControl Senior GRC Engineer with the golden voice. Our due shared their firsthand experiences navigating compliance, business adoption, and the broader implications of AI risk management.</p><p><br></p><h3><strong>Key Takeaways</strong></h3><ul><li><strong>ISO 42001 is becoming essential</strong> for companies adopting AI, not just for compliance but to build customer trust.</li><li><strong>AI risk assessments are more complex</strong> than traditional security frameworks, requiring new approaches to impact analysis.</li><li><strong>Shadow IT and vendor AI features</strong> introduce unexpected risks—companies must proactively monitor and review new AI functionalities.</li><li><strong>AI governance isn’t just about compliance; it’s about trust.</strong> Businesses that prioritize transparency and ethical AI use will have a competitive edge. Also, AI may or may not be making us dumber.</li></ul><p><br></p><p>02:23 Discussing AI in GRC and ISO 42001</p><p>02:56 ChatGPT and AI Experiences</p><p>08:07 Implementing ISO 42001: Challenges and Insights</p><p>19:20 Third-Party Risk Management and AI</p><p>26:43 Scope and Complexity of AI in Software Products</p><p>27:57 Challenges in High-Risk AI Applications</p><p>29:43 Regulatory Landscape and AI</p><p>32:02 Driving Forces Behind ISO Certification</p><p>38:53 AI Risks and Business Understanding</p><p>43:56 Ethical and Societal Impacts of AI</p>","author_name":"Chaos"}