Including AI-specific disruption scenarios in the organization’s Disaster Recovery Plan (DRP) ensures preparedness for worst-case events affecting AI systems. The AAIA™ Study Guide recommends tailoring business continuity and DR strategies to cover model unavailability, data corruption, and AI-specific dependencies.
“AI disruptions can arise from unique causes such as model corruption, adversarial attacks, or drift. Integrating these into the DRP allows for effective, scenario-specific responses and minimizes downtime.”
Tabletop exercises (A) are valuable for preparedness but are less comprehensive than scenario planning. Kill chains (B) are security-specific. KRIs (C) aid in monitoring but don’t ensure recovery. Therefore, D offers the most robust mitigation.
[Reference: ISACA Advanced in AI Audit™ (AAIA™) Study Guide, Section: “AI Governance and Risk Management,” Subsection: “Business Continuity and Disaster Recovery Planning for AI”]
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit