‹ Blogs

FINOS AI Governance Framework

Featured Image
Published on August 14, 2024
Author By Torin van den Bulk

Secure AI Summit

At the recent Secure AI Summit, co-located with CloudNativeSecurityCon in Seattle, ControlPlane showcased an AI Governance Framework developed in kind collaboration with FINOS. This initiative, spearheaded by the AI Readiness Working Group, aims to guide the onboarding, development, and operation of AI-based solutions within financial services organisations, ensuring these technologies are deployed in a safe, trustworthy, and compliant manner.

FINOS AI Readiness Group

“Our goal is to mutually develop a governance framework that manages the onboarding, development of, and running AI-based solutions within financial services organisations - allowing us all to unlock the potential of this disruptive technology in a safe, trustworthy, and compliant way.”

Scope

The Simple AI Governance Framework seeks to provide a high-level threat enumeration for LLM-based applications in financial services. The framework is predicated on a reference architecture for an AI-enabled system utilising a Large Language Model (LLM) with Retrieval Augmented Generation (RAG) and external SaaS for inference. While fairness, bias, and ethical concerns are being investigated, quality assurance of model/application responses is currently out of scope.

LLM System

Seen above, the reference architecture is reductionist by design, and avoids mention of specific tooling. This is done to promote the applicability of findings and pursue a practical, use-case led approach. In doing so, the governance framework will allow organisation(s) to demonstrate a methodical and thorough approach to the on-boarding and development of AI-based solutions.

Threat Modeling of the reference architecture will then elucidate high impact risk area(s) and mitigating controls based on a corpus of practical use-cases developed specifically to address applications of GenAI within financial organisations.

Call to Action

As this working group is in its early stages, we encourage participation in the FINOS AI Readiness Working Group and become a trailblazer for securing AI systems through open-source initiatives in financial organisations. Your involvement can help shape the future of AI in financial services, ensuring the highest standards of security, compliance, and innovation.

To view the presentation, check out the YouTube link here.