nerdexam
ExamsAAISMQuestions#185
IsacaIsaca

AAISM · Question #185

AAISM Question #185: Real Exam Question with Answer & Explanation

The correct answer is C: Prohibiting the use of customer data for model training. AAISM emphasizes strong contractual restrictions on how vendors use customer data, especially prohibiting vendors from using customer inputs to train or fine-tune shared models. This protects against: - intellectual property exposure - regulatory violations - shadow training of e

AI Security Risk Management

Question

When evaluating a third-party AI service provider, which master services agreement (MSA) provision is MOST critical for managing security risk?

Options

  • AGuaranteeing unlimited model retraining requests
  • BSharing real-time log information
  • CProhibiting the use of customer data for model training
  • DRestricting query volume thresholds

Explanation

AAISM emphasizes strong contractual restrictions on how vendors use customer data, especially prohibiting vendors from using customer inputs to train or fine-tune shared models. This protects against: - intellectual property exposure - regulatory violations - shadow training of external models

Topics

#Third-party AI risk#MSA security provisions#Data usage restrictions#Model training data security

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full AAISM PracticeBrowse All AAISM Questions