Contributor:
Lauren Ross, Senior Manager | Cybersecurity Services
In the third episode of the Risk and Cybersecurity podcast’s AI Compliance series, host Lauren Ross is joined by Steve Ursillo, Partner in Cybersecurity at Cherry Bekaert, and Morgan Hague, Senior Manager at Meditology Services. Together, they dive into the unique governance and risk management challenges organizations face when deploying internal AI versus leveraging third-party artificial intelligence (AI) solutions.
This episode covers practical approaches to data and model governance, the role of frameworks like ISO 42001 and SOC 2 in supporting responsible AI development, and the essentials of effective vendor due diligence. Our guests also explore how organizations can strengthen contractual safeguards and monitor for model drift and ethical concerns in vendor AI tools.
Tune in to learn more about:
- Key governance and risk management considerations for internal and vendor AI
- How ISO 42001 and SOC 2 frameworks support responsible AI
- Vendor due diligence and contractual safeguards in AI partnerships
- Strategies for monitoring model drift, bias, and ethical risks in third-party AI tools
- Practical steps organizations can take today to strengthen AI compliance and data protection
View All Risk & Cybersecurity Podcasts
