Risk
Missing Real-time Security Alerts
Description
Failure to generate or deliver real-time alerts for critical threats, anomalous activities, or attacks on AI systems.
Example
Model extraction attack in progress but no alert generated or escalated.
Assets Affected
AI platform
Model Inference endpoint
Mitigation
- Implement real-time security alerting
- Set clear thresholds
- Integrate with SIEM/SOAR
- Test escalation paths
Standards Mapping
- ISO 42001: A.6.2.6, A.8.4
- NIST AI RMF: MEASURE 3.1, MANAGE 4.3
- DASF v2: PLATFORM 12.3