Following the White House’s Executive Order on AI, the Cybersecurity & Infrastructure Security Agency (CISA) issued its Roadmap for Artificial Intelligence this week “which is a whole-of-agency plan aligned with national AI strategy to address our efforts to: promote the beneficial uses of AI to enhance cybersecurity capabilities, ensure AI systems are protected from cyber-based threats, and deter the malicious use of AI capabilities to threaten the critical infrastructure Americans rely on every day.”

CISA will implement the Roadmap through five lines of effort:

  • Effort 1: Responsibly use AI to support our mission.
  • Effort 2: Assure AI systems.
  • Effort 3: Protect critical infrastructure from malicious use of AI.
  • Effort 4: Collaborate and communicate on key AI efforts with the interagency, international partners, and the public.
  • Effort 5: Expand AI expertise in our workforce.

Although all of the lines of effort are important, Objective 3.1 is one that is crucial for securing critical infrastructure against new threats posed by AI: “CISA will build on existing structures to advance industry collaboration and coordination around AI security.” At this point, we know threat actors are and will continue to use AI tools to launch cyber-attacks, so it should be a high priority for us to get a handle on those threats, and how to mitigate them, particularly when they are directed at critical infrastructure.

CISA continues to evaluate and provide valuable information to public agencies and private industry. Take a look at the Roadmap to understand how CISA is tackling AI to understand how it may be applicable to your industry.

Photo of Linn Foster Freedman Linn Foster Freedman

Linn Freedman practices in data privacy and security law, cybersecurity, and complex litigation. She is a member of the Business Litigation Group and the Financial Services Cyber-Compliance Team, and chairs the firm’s Data Privacy and Security and Artificial Intelligence Teams. Linn focuses her…

Linn Freedman practices in data privacy and security law, cybersecurity, and complex litigation. She is a member of the Business Litigation Group and the Financial Services Cyber-Compliance Team, and chairs the firm’s Data Privacy and Security and Artificial Intelligence Teams. Linn focuses her practice on compliance with all state and federal privacy and security laws and regulations. She counsels a range of public and private clients from industries such as construction, education, health care, insurance, manufacturing, real estate, utilities and critical infrastructure, marine and charitable organizations, on state and federal data privacy and security investigations, as well as emergency data breach response and mitigation. Linn is an Adjunct Professor of the Practice of Cybersecurity at Brown University and an Adjunct Professor of Law at Roger Williams University School of Law.  Prior to joining the firm, Linn served as assistant attorney general and deputy chief of the Civil Division of the Attorney General’s Office for the State of Rhode Island. She earned her J.D. from Loyola University School of Law and her B.A., with honors, in American Studies from Newcomb College of Tulane University. She is admitted to practice law in Massachusetts and Rhode Island. Read her full rc.com bio here.