As artificial intelligence becomes deeply integrated into enterprise platforms, security operations, and customer-facing systems, organizations face growing pressure to evaluate and approve AI initiatives that carry significant business and cyber risk. Consequently, enterprises must move beyond experimentation and adopt structured frameworks that balance innovation with governance and security. To address this urgent need, SANS Institute and siberX have introduced NOW // AI, a simulation-based program designed to strengthen AI risk management, enhance governance models, and align secure AI adoption with measurable business outcomes.
As AI adoption accelerates across regulated industries such as finance, healthcare, and critical infrastructure, organizations increasingly face oversight challenges. Many enterprises still lack mature governance frameworks, tested operational controls, and cross-functional decision-making processes for AI deployment. Therefore, leadership teams must ensure AI systems are secure, compliant, and aligned with enterprise risk strategies before scaling implementation.
Cyber Technology Insights: SANS and OWASP Join Forces to Standardize AI Security Controls
“AI adoption is accelerating across regulated industries, yet many organizations lack structured oversight models, tested control frameworks, and cross-functional decision processes,” said Rob T. Lee, Chief AI Officer at SANS Institute. “Boards are increasing scrutiny and security leaders are expected to demonstrate that AI systems are protected, governed, and aligned with enterprise risk management strategy.”
To close this gap, NOW // AI focuses on three operational pillars: Protect AI, Utilize AI, and Govern AI. Specifically, the program teaches organizations how to secure AI implementations and large language models, responsibly deploy AI-powered cyber defense and digital forensics tools, and implement governance strategies that support policy enforcement and regulatory compliance. In addition, the program emphasizes real-world decision-making through risk-based frameworks rather than theoretical guidance alone.
Furthermore, the program uses structured simulations led by certified instructors to create realistic enterprise scenarios. Through these simulations, participants test AI risk evaluation processes, coordinate incident response strategies, and develop enterprise-wide response plans. As a result, organizations gain practical experience in managing AI threats while improving measurable security outcomes.
Cyber Technology Insights: SANS Launches Skills Quest by NetWars: Self-Paced Cyber Training for Threat Landscape
“AI deployment is moving faster than governance maturity in many organizations. Executives are accountable for the outcomes, whether the systems are fully understood or not,” remarked Mahdi Raza, CEO of siberX. “NOW // AI provides a structured environment to evaluate risk, strengthen oversight, and make disciplined decisions that support innovation without increasing uncontrolled exposure.”
Moreover, the program builds on the SANS AI Blueprint framework, which outlines how enterprises can protect AI systems, securely leverage AI capabilities, and implement responsible governance structures. By combining expert-led instruction with applied simulations, NOW // AI helps organizations operationalize AI security strategies and improve enterprise-wide risk discipline.
“The SANS AI Blueprint defines how organizations can protect AI systems, utilize AI securely, and govern AI responsibly,” added Lee. “This collaborative program enables expert practitioners and leaders to apply those principles under realistic conditions, strengthening their organization’s security posture and risk management discipline.”
Ultimately, as AI continues to reshape enterprise technology strategies, organizations must prioritize governance, security validation, and operational resilience. Programs like NOW // AI signal a broader industry shift toward structured, measurable, and security-first AI adoption models.
Cyber Technology Insights: SANS Institute Launches First-of-Its-Kind ICS/OT Penetration Testing Course
To participate in our interviews, please write to our CyberTech Media Room at info@intentamplify.com
