× EU ICT Risk Newsroom DORA News On the Horizon ΑΙ Cybersec Space Cyber Alerts GDPR News EU CERT Advisories ICT Governance ESA/NCAs Contact

AI Vendor Contracts: Key Questions for Managing Partners

In this Help Net Security interview, Kumar Ravi, Chief Security & Resilience Officer at TMF Group, argues that over-privileged access and weak workflow controls pose more danger than ransomware attacks. He states these issues accumulate quietly and often go unnoticed, making them a significant threat. Ravi also discusses the tension between legal privilege and timely threat-sharing, alongside the challenge of managing fourth-party vendor risk.

AI Vendor Contracts: Key Questions for Managing Partners
In this Help Net Security interview, Kumar Ravi, Chief Security & Resilience Officer at TMF Group, argues that over-privileged access and weak workflow controls pose more danger than ransomware attacks. He states these issues accumulate quietly and often go unnoticed, making them a significant threat. Ravi also discusses the tension between legal privilege and timely threat-sharing, alongside the challenge of managing fourth-party vendor risk. He emphasizes critical questions firms must ask before adopting AI-native tools, highlighting the need for security to be a core consideration.

Subscribe for EU DORA and Banking ICT Risk news and insights