Chief Information Security Officer (CISO)

Executive responsible for information security + cybersecurity programmes. In AI governance, the CISO typically owns model-security + data-pipeline-security risks (prompt injection, training-data integrity, inference-API security) and the supporting controls. Distinct from the AI Risk Owner who owns the use-case-level risk.

Framework references

• ISO 27001
• NIST CSF 2.0

Relevant Responsible AI Studio tools

• /tools/incident-response
• /tools/vendor-assessment

More governance role terms

• AI Ethics Committee →
• AI Operator (NIST AI RMF) →
• AI Risk Owner →
• Authorised Representative (EU AI Act) →

See the full 80-term glossary →