Igor Omilaev from Unsplash

FS-ISAC releases GenAI risk guide for financial institutions

It provides a structured approach to data governance to ensure financial firms remain compliant with security standards.

FS-ISAC has published a new guide to help financial institutions mitigate risks associated with Generative AI (GenAI) whilst maximizing its benefits.

The guidance titled “More Opportunity, Less Risk: 8 Steps to Manage Financial Services Data with GenAI” was developed by FS-ISAC’s Artificial Intelligence Working Group and provides a structured approach to data governance to ensure financial firms remain compliant with security standards.

To maintain data integrity and traceability, FS-ISAC emphasizes the need to create and maintain a data lineage inventory. Strong access controls, data sanitization, and accurate classification methods help prevent security breaches and ensure compliance.

Customer data protection remains a priority, with FS-ISAC recommending the use of differential privacy, encryption, data sanitization, and sandboxing to safeguard sensitive information.

Another important aspect is effective model testing. Financial firms should establish testing baselines and leverage cross-sector data sharing to enhance GenAI reliability. 
 

Join Singapore Business Review community
A NOTE FROM SINGAPORE BUSINESS REVIEW

The people you want to reach are already in this room.

Every quarter, SBR lands on the desks of the founders, CFOs, and directors running Asia's most consequential companies. Every day, they open our newsletter and read our website. It's a room that took twenty years to build — and it's the one most of our partners are trying to get into.

The good news is that the door is open. We work with companies on thought leadership articles, sponsored content, industry summits across Southeast Asia, regional awards programmes, podcasts, and media placements in print and digital. The shape of the right partnership depends on what you're trying to do, which is why we'd rather start with a conversation than send a rate card.


If you have something this room should know about, tell us. We'll tell you honestly whether we can help, and how.

No rate cards until we understand the brief. It's a better use of everyone's time.