Cyber Security in the Age of AI — Five Steps for Protecting Government Data

Oct 31, 2024 | Blog, Uncategorized


City AI Connection is a series of posts on emerging ideas in artificial intelligence, with a focus on government application. These articles are initially shared exclusively with the City AI Connect community and subsequently with a broader audience via the Bloomberg Center for Government Excellence at Johns Hopkins University website, 
govex.jhu.edu. City AI Connect is a global learning community and digital platform for cities to trial and advance the usage of generative artificial intelligence to improve public services. The community is open exclusively to local government employees. To join, visit cityaiconnect.jhu.edu

By Lena Geraghty

As artificial intelligence permeates public sector operations, local governments, with their enormous stores of sensitive information, are facing new digital threats that demand stronger cyber security measures. 

AI relies on large datasets, and improper handling of government data like social security numbers, medical details, and bank account information can lead to breaches of privacy and data misuse. These systems are prime targets for hacking, putting both individual data and public infrastructure at risk. 

 The good news? Many municipalities already take cyber security seriously — 96 percent of respondents to the Public Technology Institute’s 2023 Local Government Cybersecurity National Survey say that their organization provides cyber security training at least once a year. 

You have probably participated in these exercises, like mock phishing attempts and password updates, in your own organization. These essential practices are a solid start but, in the age of AI, are not enough to adequately protect government-owned data. 

As we close out Cyber Security Awareness Month, here are five steps governments can take to build more resilience in their data infrastructure in the age of AI.

Conduct a Risk Assessment — Evaluate where AI solutions are or will be used, especially in high-risk areas like public safety, utilities, or resident services. Test AI solutions using adversarial scenarios to understand how they can be manipulated or evaded by malicious actors. Then, devise a plan to address these issues.

Build a Strong Foundation of Data Governance — Create an information security policy to ensure airtight collection, storage, and processing of data used in AI models and tools. Focus on limiting the amount of personal and sensitive data processed by AI systems to reduce exposure in the event of an attack.

Engage in Regular Audits and Compliance Checks — Partner with third-party experts to conduct periodic security assessments to identify vulnerabilities in AI systems, datasets, or software solutions. Ensure AI solutions comply with relevant data protection regulations and sector-specific laws. Assess vendors and tech providers for security practices, ensuring they meet your institution’s cyber security standards.

Train Staff and Build Awareness  Enhance cyber security training to include AI-related risks. Include tips for recognizing highly realistic and persuasive content created by Generative AI tools. Ensure staff understand the incident response process for AI-related security breaches and can act quickly in the event of an attack.

Engage External Experts and Collaborate — Join intergovernmental forums or networks focused on AI security to share best practices, threat intelligence, and resources. If you are a city government employee, GovEx’s City AI Connect is a great place to start. This field is constantly evolving so partner with cyber security and AI specialists to remain up-to-date on the latest threats and defensive techniques.

Lena Geraghty is a data and government advisor for GovEx. 

 

GovEx Joins U.S. Tech Policy Network

GovEx Joins U.S. Tech Policy Network

By Amy Edwards Holmes  Recently, I joined a group of local leaders from around the country at the White House to discuss how we can work to align new technology and data practices to improve the lives of all Americans. I’m proud that the Bloomberg Center for...

GovEx supports job readiness training in Memphis

GovEx supports job readiness training in Memphis

This month, GovEx’s Kel Wang, Rudy de Leon Dinglas, and Latricia Boone traveled to Memphis to lead a two-day data and performance management workshop as part of Opportunity Accelerator (OA). GovEx partners with Results for America and other organizations on OA, which...

GovEx leaders speak at “Knowledge into Action” conference

GovEx leaders speak at “Knowledge into Action” conference

This week GovEx Executive Director Amy Edwards Holmes, GovEx founder and Associate Vice Provost of Public Innovation at Johns Hopkins University Beth Blauer, and Amanda Daflos, Executive Director of our sister center, the Bloomberg Center for Public Innovation,  spoke...

GovEx Spotlight: Baltimore Data Academy

GovEx Spotlight: Baltimore Data Academy

Check out the latest GovEx Spotlight on the Baltimore Data Academy. Listen to our full podcast episode with Baltimore City Chief Data Officer Justin Elszasz here.

Data Workforce: We Want to Hear From You!

Data Workforce: We Want to Hear From You!

GovEx is conducting a series of virtual focus groups to gather input on the future of data work in local government, and we want to hear from you! Whether you are a leader, HR professional, or a dedicated data officer, we want to know about your experiences working...

Detroit officials discuss innovative street view program at GovEx

Detroit officials discuss innovative street view program at GovEx

Last week, GovEx and our sister center, the Bloomberg Center for Government Innovation (BCPI), together with 21st Century Cities hosted a presentation from Detroit officials Tamara Fant and Ted Schultz, who discussed their innovative Street View program. In 2018, the...