ISACA Certified Artificial Intelligence Auditor (CAIA) — Question 43

Which of the following should be applied to an AI system but are not typically used in traditional systems?

Answer options

• A. Controls to protect data privacy
• B. Controls to monitor data poisoning
• C. Controls to prevent data exfiltration
• D. Controls to manage data governance

Correct answer: B

Explanation

The correct answer is B because monitoring for data poisoning is a unique challenge in AI systems, where malicious alterations to training data can significantly affect outcomes. The other options, while important for any data system, are standard practices that apply to both traditional and AI systems.