AI and Policy Chatbots, Part II

policy

Today I want to return to the idea of using an AI-driven chatbot as a compliance policy adviser for employees. On one hand, the potential gains for your compliance program are clear; but are we miscalculating some of the potential risks that AI chatbots might bring to your program too? This particular bee crept into…

Read More

AI Chatbots and Policy Management

AI

Compliance officers talk all the time about how artificial intelligence has the potential to transform the programs you run. Today I want to unpack an example of how that might work, courtesy of a case-study I saw last week involving AI and policy management. The company in question is a global IT services firm (23,000…

Read More

Notes on Future of SOX Compliance

sox compliance

This week I’m attending the annual user conference for Workiva, maker of software for internal audit and GRC teams. This means, of course, that artificial intelligence is all over the agenda and everyone is talking about how AI will transform internal control and SOX compliance. Let’s review the notes I took. One point that came…

Read More

What If Your AI ROI Fails?

AI

We interrupt everyone’s ceaseless march into an AI-enhanced future to note a recent study which found that using artificial intelligence actually slowed down the performance of experienced software developers rather than enhanced it. For corporations itching to roll out AI tools at scale, these findings raise several questions worth pondering. The study itself comes from…

Read More

More Notes on the Compliance AI Freakout

freakout

Navex released its annual State of Risk & Compliance Report the other week, and I’ve been looking through the findings for insights into what’s on compliance officers’ minds these days. One issue that stood out: how compliance teams are handling artificial intelligence. We should dwell on this because, as just about every compliance officer already…

Read More

Governing Third-Party AI Risks

third-party risk

Earlier this week I attended a GRC conference in New York, York, which meant plenty of talk about challenges in cybersecurity, data management, internal control, and (of course) artificial intelligence. One interesting session explored how to manage the risks of third-party AI models within your enterprise. As usual, I took lots of notes, and pass…

Read More

More on AI Agents Taking Employee Training

training

Today I want to continue pulling on the thread we first uncovered last week, that ChatGPT’s latest artificial intelligence system is so advanced that employees can have it take their ethics and compliance training for them. We still have lots of implications both short- and long-term that compliance officers need to consider.  For those who…

Read More

Using AI Agents to Cheat on Training

AI

Well here’s something compliance officers need like a hole in the head: ChatGPT’s newest incarnation includes an “agent mode” so advanced that apparently employees can use it to complete their ethics and compliance training for them, with compliance officers none the wiser. Lovely. This irritating advance in artificial intelligence came to my attention courtesy of…

Read More

Greystar’s AI Antitrust Settlement

Greystar

Anyone looking for insights into algorithmic misconduct arising from a company’s use of artificial intelligence may want to look at the apartment industry this week. The Justice Department just settled an antitrust case with the nation’s largest landlord that offers us a few points to ponder.  The settlement was announced last Friday between the Justice…

Read More

AI vs. the Three Lines Model

Three Lines

Anyone who enjoys pondering the future of the internal audit and compliance professions may want to take note of a debate that erupted online last week about the Three Lines of Defense. It’s a fascinating discussion about how artificial intelligence might affect the Three Lines model, including whether AI might render the whole idea obsolete. …

Read More