Agencies release guidance on AI data security 

May 28, 2025 - 04:02 PM
An abstract image of cybersecurity graphics.

The National Security Agency, Cybersecurity and Infrastructure Security Agency and international partners May 22 released guidance on securing data used for artificial intelligence and machine learning systems. The guidance outlines potential risks from data integrity issues in various stages of AI development and usage, and it provides best practices to secure AI-based system data. Additionally, the guidance examines three significant areas of data security risks in AI systems — the data supply chain, maliciously modified or “poisoned” data and data drift.  

“This crucial reference guide, compiled by the world’s leading government AI experts, is a must-read for health care leaders involved in the governance, development or deployment of AI systems in their organizations,” said John Riggi, AHA national advisor for cybersecurity and risk. “The guide discusses specific methodologies to help ensure data security and integrity throughout the AI system lifecycle. These include starting with sourcing reliable data sets and employing immutability and encryption tools, along with digital signatures, to validate and record any trusted changes to AI systems and data.” 
 
For more information on this or other cyber and risk issues, contact Riggi at jriggi@aha.org. For the latest cyber and risk resources and threat intelligence, visit aha.org/cybersecurity.

Related News Articles

Headline
AHA Healthier Together Conference concludes with sessions on AI, person-centered care
The AHA wrapped up its inaugural Healthier Together Conference in Dallas May 14 with a plenary session on how the application of artificial intelligence-driven…
Headline
MACPAC calls for increased transparency on AI-supported prior authorization 
The Medicaid and CHIP Payment and Access Commission approved recommendations it will issue to Congress in its June report on oversight and increased…
Headline
Microsoft warns of sophisticated phishing campaign heavily targeting health care organizations
Microsoft Threat Intelligence is warning of a large scale, multistage phishing campaign that disproportionately targeted the health care sector, sending “code…
Headline
CISA announces initiative to bolster critical infrastructure against nation-state cyberattacks
The Cybersecurity and Infrastructure Security Agency has launched a new initiative for critical infrastructure to defend against cyberattacks through proactive…
Headline
Webinar to explore AI use in cybersecurity, health care technology 
John Riggi, AHA national advisor for cybersecurity and risk, will moderate a webinar May 5 at 1 p.m. ET that will explore how bad actors are leveraging…
Headline
AHA, Joint Commission announce cybersecurity readiness effort 
The AHA and Joint Commission May 4 announced the launch of the Cyber Resilience Readiness program, an initiative to help hospitals and health systems assess…