{"id":54689,"date":"2023-11-27T22:54:00","date_gmt":"2023-11-27T22:54:00","guid":{"rendered":"https:\/\/www.darkreading.com\/risk\/cisa-ncsc-offer-roadmap-not-rules-new-secure-ai-guidelines"},"modified":"2023-11-27T22:54:00","modified_gmt":"2023-11-27T22:54:00","slug":"cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\/","title":{"rendered":"CISA, NCSC Offer a Road Map, Not Rules, in New Secure AI Guidelines"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/blt8d4f25f42fb6cee7\/653305e279b7094714381665\/mind_brain-Jan_Mika_via_Alamy.jpg\" class=\"ff-og-image-inserted\"><\/div>\n<p>On Sunday, the US Cybersecurity and Infrastructure Security Agency (CISA) and the UK&#8217;s National Cyber Security Centre released new <a href=\"https:\/\/www.ncsc.gov.uk\/collection\/guidelines-secure-ai-system-development\" target=\"_blank\" rel=\"noopener\">Guidelines for Secure AI System Development<\/a>.<\/p>\n<p>The Guidelines \u2014 co-sealed by 23 domestic and international cybersecurity organizations \u2014 build on ongoing <a href=\"https:\/\/www.darkreading.com\/operations\/white-house-big-tech-commitments-secure-ai\" target=\"_blank\" rel=\"noopener\">White House efforts to mitigate AI risk<\/a> and <a href=\"https:\/\/www.darkreading.com\/application-security\/embedding-security-by-design-a-shared-responsibility-\" target=\"_blank\" rel=\"noopener\">the secure-by-design philosophy<\/a>. They provide an outline for building security into AI systems, but stop short of instituting any rules or regulations on the industry, in contrast to <a href=\"https:\/\/www.darkreading.com\/edge-articles\/eu-debates-ai-act-to-protect-human-rights-define-high-risk-uses\" target=\"_blank\" rel=\"noopener\">the European Union&#8217;s recent AI Act<\/a>. AI companies thus now have a guidebook to follow, or disregard, at their discretion.<\/p>\n<p>&#8220;The industry is finding a lot of innovative ways to adopt AI for good, but also in malicious ways,&#8221; says Chris Hughes, chief security advisor at Endor Labs and cyber innovation fellow at CISA. &#8220;This is a recognition that AI is here to stay, and we&#8217;ve got to try to get ahead of it, to avoid bolting security on later versus building it in now.&#8221;<\/p>\n<h2 class=\"regular-text\">New Guidelines for AI in US, UK<\/h2>\n<p>CISA and NCSC broke down their new guidelines into four primary sections.<\/p>\n<p>The first section, on secure design, covers potential risks and threat modeling, as well as the potential trade-offs to consider in this initial design phase.<\/p>\n<p>Secure development, section two, covers the AI development lifecycle, including concerns with supply chain security, documentation, and asset and technical debt management.<\/p>\n<p>Next, the guidelines advise organizations how to deploy securely \u2014 avoiding compromise, implementing incident management, and so on.<\/p>\n<p>The last section covers all things related to the operation and maintenance of AI-enabled technologies post-deployment, including monitoring, logging, updating, and information sharing.<\/p>\n<p>&#8220;It&#8217;s not looking to recreate the wheel,&#8221; Hughes explains. Instead, &#8220;what jumped out to me is the continued dialogue CISA has been having around secure-by-design systems and software. It&#8217;s continuing the trend, and putting the onus on software suppliers and vendors \u2014 something that was emphasized not just by CISA, but also the NCSC.&#8221;<\/p>\n<h2 class=\"regular-text\">Regulation: A Lighter or Heavier Touch?<\/h2>\n<p>In June, the EU overwhelmingly passed the so-called &#8220;AI Act,&#8221; defining new laws aimed at trust and accountability for the AI industry.<\/p>\n<p>By contrast, CISA and NCSC have merely provided recommendations for AI developers and the companies that rely on them.<\/p>\n<p>&#8220;This is just a guideline, just a recommendation. It uses the word &#8216;should&#8217; I think 51 times,&#8221; Hughes emphasizes.<\/p>\n<p>For this reason, he admits, they&#8217;re unlikely to have nearly as much impact as real regulation. &#8220;As we know, security does have a cost to it \u2014 it can slow things down sometimes, or introduce friction. And when you have incentives like speed to market, and revenue, and things like that on the line, people tend to not do what they&#8217;re not required to do.&#8221;<\/p>\n<p>But whether that&#8217;s a bad or good thing is up for debate. &#8220;If you come at it from the perspective of security and privacy for consumers and citizens, there&#8217;s an argument that regulation is better. It&#8217;s forcing security, caution, governance, and safeguards for privacy and security. But at the same time, there&#8217;s no denying that compliance and regulatory measures can be cumbersome and bureaucratic, and can kind of box out younger, disruptive companies, having an impact on innovation,&#8221; Hughes adds. &#8220;I hope that some software suppliers will take this and use it as a competitive differentiator.&#8221;<\/p>\n<p>Read More <a href=\"https:\/\/www.darkreading.com\/risk\/cisa-ncsc-offer-roadmap-not-rules-new-secure-ai-guidelines\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>US and UK authorities issued new recommendations for companies that build and rely on AI, but they stop short of laying down the law.Read More <a href=\"https:\/\/www.darkreading.com\/risk\/cisa-ncsc-offer-roadmap-not-rules-new-secure-ai-guidelines\">HERE<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[151],"tags":[],"class_list":["post-54689","post","type-post","status-publish","format-standard","hentry","category-darkreading-ti"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>CISA, NCSC Offer a Road Map, Not Rules, in New Secure AI Guidelines 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"CISA, NCSC Offer a Road Map, Not Rules, in New Secure AI Guidelines 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2023-11-27T22:54:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/blt8d4f25f42fb6cee7\/653305e279b7094714381665\/mind_brain-Jan_Mika_via_Alamy.jpg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"CISA, NCSC Offer a Road Map, Not Rules, in New Secure AI Guidelines\",\"datePublished\":\"2023-11-27T22:54:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\\\/\"},\"wordCount\":569,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/eu-images.contentstack.com\\\/v3\\\/assets\\\/blt66983808af36a8ef\\\/blt8d4f25f42fb6cee7\\\/653305e279b7094714381665\\\/mind_brain-Jan_Mika_via_Alamy.jpg\",\"articleSection\":[\"DarkReading |TI\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\\\/\",\"name\":\"CISA, NCSC Offer a Road Map, Not Rules, in New Secure AI Guidelines 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/eu-images.contentstack.com\\\/v3\\\/assets\\\/blt66983808af36a8ef\\\/blt8d4f25f42fb6cee7\\\/653305e279b7094714381665\\\/mind_brain-Jan_Mika_via_Alamy.jpg\",\"datePublished\":\"2023-11-27T22:54:00+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\\\/#primaryimage\",\"url\":\"https:\\\/\\\/eu-images.contentstack.com\\\/v3\\\/assets\\\/blt66983808af36a8ef\\\/blt8d4f25f42fb6cee7\\\/653305e279b7094714381665\\\/mind_brain-Jan_Mika_via_Alamy.jpg\",\"contentUrl\":\"https:\\\/\\\/eu-images.contentstack.com\\\/v3\\\/assets\\\/blt66983808af36a8ef\\\/blt8d4f25f42fb6cee7\\\/653305e279b7094714381665\\\/mind_brain-Jan_Mika_via_Alamy.jpg\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"CISA, NCSC Offer a Road Map, Not Rules, in New Secure AI Guidelines\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"CISA, NCSC Offer a Road Map, Not Rules, in New Secure AI Guidelines 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\/","og_locale":"en_US","og_type":"article","og_title":"CISA, NCSC Offer a Road Map, Not Rules, in New Secure AI Guidelines 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2023-11-27T22:54:00+00:00","og_image":[{"url":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/blt8d4f25f42fb6cee7\/653305e279b7094714381665\/mind_brain-Jan_Mika_via_Alamy.jpg","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"CISA, NCSC Offer a Road Map, Not Rules, in New Secure AI Guidelines","datePublished":"2023-11-27T22:54:00+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\/"},"wordCount":569,"commentCount":0,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\/#primaryimage"},"thumbnailUrl":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/blt8d4f25f42fb6cee7\/653305e279b7094714381665\/mind_brain-Jan_Mika_via_Alamy.jpg","articleSection":["DarkReading |TI"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.threatshub.org\/blog\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\/","url":"https:\/\/www.threatshub.org\/blog\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\/","name":"CISA, NCSC Offer a Road Map, Not Rules, in New Secure AI Guidelines 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\/#primaryimage"},"thumbnailUrl":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/blt8d4f25f42fb6cee7\/653305e279b7094714381665\/mind_brain-Jan_Mika_via_Alamy.jpg","datePublished":"2023-11-27T22:54:00+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\/#primaryimage","url":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/blt8d4f25f42fb6cee7\/653305e279b7094714381665\/mind_brain-Jan_Mika_via_Alamy.jpg","contentUrl":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt66983808af36a8ef\/blt8d4f25f42fb6cee7\/653305e279b7094714381665\/mind_brain-Jan_Mika_via_Alamy.jpg"},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/cisa-ncsc-offer-a-road-map-not-rules-in-new-secure-ai-guidelines\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"CISA, NCSC Offer a Road Map, Not Rules, in New Secure AI Guidelines"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/54689","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=54689"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/54689\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=54689"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=54689"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=54689"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}