What One Year in AI Security and Governance Changed About How I See AI (codebynight.dev)

After a year working in AI security and governance, the author has shifted from a fascination with the flashy capabilities of AI tools to a more critical perspective focused on data privacy and security implications. Initially driven by the question of whether a new AI tool was functional, the author now emphasizes the importance of understanding what data is being accessed and shared. This change in mindset highlights a growing awareness within the AI/ML community about the risks associated with widespread AI adoption, particularly in environments like marketing and GTM (go-to-market) teams where the integration of AI can be informal and unregulated. The author reveals that a significant challenge in AI security is identifying where AI is being used within organizations, as tools often infiltrate workflows without oversight or explicit approval. Casual usage, often driven by the urgent need for efficiency, complicates governance. As the need for AI grows, so do the potential risks, including data leaks and compliance issues. The experience prompts the author to favor local or self-hosted AI solutions to maintain greater control over data and permissions. Overall, this evolution in perspective underscores the necessity for organizations to develop robust AI governance frameworks that recognize the complexity and subtleties of AI integration in everyday tasks.