Teaming up with... AVIVA

Welcome to the UKGI weekly regulation update service for Aviva ABC brokers

We hope you find the Updates useful. If you are
interested in subscribing to our affordable
ABC compliance support package, please
email us at ABC@ukgigroup.com or
call UKGI on our dedicated ABC
contact line 01925 767893.

NCSC highlights questions for firms to ask when using AI models to find vulnerabilities

May 14, 2026 | NCSC, Uncategorized

Link(s):          10 questions to ask when using AI models to find vulnerabilities

Context

The National Cyber Security Centre has published an article outlining that using AI to find vulnerabilities can bring added security considerations.

Key points to note

  • When using AI to improve security in an organisation, the mere act of finding a vulnerability does not automatically improve it.
  • The best way to improve security is to maintain basic cyber security hygiene. Ensure patches are deployed immediately and ensure unauthorised access is prohibited. Understand the software being relied on, and know what IT is in the estate.
  • AI might identify a number of vulnerabilities, these should be prioritised according to risk.
  • Using AI isn’t risk free and firms should weigh up the security implications which might arise, such as leakage of information or providing access to the production environment.
  • AI is a tool that attackers and defenders will use, it’s still necessary for firms to understand security – AI models will improve the skills of cyber security staff but won’t replace them.