CS Jan-Feb 2024
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
training<br />
SAFEGUARDING HR IN THE AGE OF INCESSANT THREAT<br />
ROBERT O'BRIEN OF METACOMPLIANCE HIGHLIGHTS HOW DEPARTMENTAL CYBER SECURITY<br />
TRAINING CAN HELP PROTECT AGAINST THE RELENTLESS CYBER THREATS FACED BY HR TEAMS<br />
MetaCompliance chief evangelist Robert<br />
O'Brien: AI-related cybercrime has led to<br />
a surge in targeted attacks, with the<br />
human resources department of<br />
particular focus.<br />
Imagine that you had the opportunity<br />
to hire a talent management professional<br />
whose qualifications were<br />
unparalleled, suggests Robert O'Brien,<br />
chief evangelist, MetaCompliance. "They<br />
possess not only an in-depth understanding<br />
of HR systems, people management<br />
processes and recruitment strategies, but<br />
also an extensive knowledge of sociology,<br />
behavioural economics and a myriad<br />
of other skills. Enter the era of AI, the<br />
epitome of this visionary professional."<br />
Whether you embrace it or resist it,<br />
AI is an indomitable force that is here to<br />
stay, he points out, with its impact set to<br />
dwarf the transformative influence of the<br />
internet in the workplace. "The world of<br />
tomorrow, shaped by AI, will make our<br />
current interactions with technology<br />
seem as rudimentary as child's play."<br />
Most organisations are currently<br />
grappling with the challenges posed<br />
by employees incorporating AI, such as<br />
chatbots and GPTs, into their daily work<br />
routines, O'Brien continues. "These challenges<br />
encompass a wide array of issues,<br />
with two critical concerns rising to the<br />
surface: PR vulnerability and the fallibility<br />
of AI responses, which are at the forefront<br />
of the problems organisations must<br />
navigate as they embrace AI adoption.<br />
"On the flip side, cybercriminals exhibit<br />
no hesitation in embracing AI and are<br />
eagerly leveraging this technology to<br />
amplify their assaults on organisations,<br />
motivated by both mischief and financial<br />
gain." For specific departments in the<br />
organisation, this enthusiasm for AIrelated<br />
cybercrime has led to a surge in<br />
targeted attacks,<br />
with the human resources<br />
department of particular focus.<br />
Cybercriminals are harnessing the<br />
wealth of knowledge provided by AI to<br />
impersonate HR personnel, their trusted<br />
suppliers and other high-ranking executive<br />
functions. This deception enables<br />
them to infiltrate confidential data<br />
stores and exploit the authority of the<br />
HR department, often manipulating<br />
privileged interactions within the<br />
organisation for their deceitful ends."<br />
SURGE IN ATTACKS ON HR<br />
Traditionally, cyber threats involved<br />
remote hackers employing social<br />
engineering techniques or leveraging<br />
vulnerabilities in outdated software<br />
systems," states O'Brien. "While these<br />
methods are still prevalent, the advent<br />
of AI technology has opened a Pandora's<br />
box of possibilities for cybercriminals.<br />
This evolution is driven by the increased<br />
sophistication of AI, allowing it to<br />
automate and enhance the effectiveness<br />
of various cyberattack vectors.<br />
"The potential consequences of AIdriven<br />
attacks are nothing short of<br />
alarming. We're no longer dealing solely<br />
14<br />
computing security <strong>Jan</strong>/<strong>Feb</strong> <strong>2024</strong> @<strong>CS</strong>MagAndAwards www.computingsecurity.co.uk