CSIS LOGO
CSIS Portal
Under Attack?
Abstract digital sphere symbolising artificial intelligence and cybersecurity
HOW CSIS USES AI IN CYBERSECURITY

OUR AI PROMISE, PRINCIPLES, AND GOVERNANCE

Illustration of a cyber attacker surrounded by digital elements representing AI-powered cyber threats

AI in Cybersecurity

AI is having a profound effect on organisations of all types and doing so at a dizzying pace. Furthermore, AI is redefining cybersecurity. It is transforming how attackers and defenders fundamentally operate, and how organisations across the globe protect themselves. AI-powered tools and workflows are amplifying threats but also defensive capabilities, changing the speed, scale, and sophistication of cyber operations from both sides.

Threat actors are using AI to move faster and scale operations.

  • Social engineering is becoming more sophisticated harder to detect.
  • Attack campaigns are moving (and morphing) faster.
  • Actors are developing and adopting new techniques at a faster rate
  • The ability to bypass traditional security controls is sharper than ever before.
  • Attacker capabilities are becoming more accessible through AI-enabled tooling.
  • The speed of exploitation of discovered vulnerabilities is outpacing the speed of patching.

Defenders must also take full advantage of AI. However, we must absolutely avoid inadvertently introducing additional vulnerabilities or compromising the overall integrity and quality of security efforts.

The disruptive nature of AI and the speed of its advancement have brought chaotic noise, persistent myths, and both radical overadoption and paralysing conservatism amongst cybersecurity operators, leading to a harmful neglect of rigorous implementation and governance best practices. It is important for us to clearly explain the foundational principles underlying how we use AI at CSIS.

Our Promise

At CSIS, the way we use AI is built on a single, uncompromising promise:

Our use of AI broadens and deepens our cybersecurity and intelligence capabilities more than humans alone can achieve, but we do not outsource high-impact decisions to AI systems.

This promise applies to all our services, capabilities, functions and teams.

 

Human ownership and governance are central to our operating and service delivery models because of:

01

Accuracy and Reliability

AI outputs can be plausible but wrong and they are subject to bias. An unverified error can have serious security, financial, and reputational impact.

 

02

Data Protection and Confidentiality

Human governance is needed to enforce data classification, decide what can/cannot be processed by AI, and ensure regulatory (e.g. GDPR) and contractual obligations are met.

 

03

Legal and Regulatory Accountability

AI models are not liable for their outputs. People and organisations are. Decisions about risk tolerance, incident handling, data processing, and reporting must be traceable and justifiable.

 

04

Third‑Party and Supply-Chain Risk

Strong human governance ensures our AI use does not create a supply-chain risk vector for our clients and preserves the integrity of our Information Security Management System, asset management, and third-party risk controls.

 

05

Ethics, Values, and Professional Judgement

Some activities we undertake (e.g., advising clients, communicating sensitive intelligence, coordinating responses to breaches) involve the application of ethical considerations and contextual judgement that AI cannot reliably perform on its own.

 

06

Resilience and Continuous Improvement

AI is in its infancy, and humans must be accountable for the inevitable learnings and improvements stemming from early-stage implementations.

 

Our Principles

Our AI promise is anchored with the following foundational principles:

 

Illustration of a human analyst overseeing an AI system within a controlled environment
Principle 1

Human Accountability and Oversight

We use AI as an enabler for human expertise – not as a replacement. For example, AI assists in collection, correlation, enrichment, rule generation, and research drafting, so analysts concentrate on the aspects that requires human judgment. As such, all outputs (e.g. deployments, reports, recommendations, etc.) are always verified and owned by a human.

Illustration of interconnected data servers representing transparent and traceable AI systems
Principle 2

Transparency and Explainability

AI has the same governance and oversight applied to it as every other tool in our stack. Every AI enabled workflow and agent action is logged and held to the same standards as any other data. AI outputs summarise visible evidence, not hidden reasoning — analysts must always be able to verify, override, and explain each step of its implementation.

Illustration of a secured laptop with a padlock representing AI security and adversarial protection
Principle 3

Security and Adversarial Robustness

Security is paramount. Everything that reaches our AI systems is treated as untrusted and agent workflows are designed to resist prompt injection by keeping tool access constrained and instructions separated from data. We test our own AI workflows adversarially on a recurring basis and hold AI model providers to the same supply chain security standards as any other vendor. We do not run unrestricted AI agents against client systems, and AI cannot define or change the agreed scope of any engagement.

Illustration of layered AI infrastructure representing governance and risk management
Principle 4

Governance

AI is tooling — every deployment meets the same engineering, security, and governance standards as everything else in our stack, with no separate rules or accountability structures. Every AI capability affecting security decisions has a named owner, a documented risk assessment revisited whenever conditions change materially and is evaluated against representative data before going near production. When an AI workflow produces a harmful or erroneous output, we have a defined response: severity classification, a named owner, and a customer notification obligation where warranted.

Illustration of secure data infrastructure representing European AI data storage and processing
Principle 5

Data Residency and Model Use

Your data stays in Europe for both storage and processing — we never train foundation models on your raw data, and while anonymised aggregated data may inform detection logic improvements, your raw intelligence is never shared. We prefer open-weight models on European infrastructure, and where we use non-European foundation models they must have demonstrable EU data residency and be explicitly covered in our DPAs. We also do not rely on a single AI solution, rather we leverage diverse AI infrastructure that encompasses numerous models and agents delivering appropriate resource management, risk mitigation, and cross validations.

Rest Assured

The principles explained here enable us to embrace the transformative power of AI without compromising the human expertise that underpin our services and our focus on the quality and integrity of security.

Progressive but responsible use of technology that enhances human capabilities has always been the foundation of our work, and AI has not changed this approach.

We will continue to harness technological advancements to ensure we deliver the highest quality cybersecurity and intelligence services to keep our customers protected from evolving cyber threats.

 

CSIS Security Group A/S is a member of the Allurity family. Learn More.