On Wednesday, 2 October 2024, the afternoon event on new technologies took place for the fifth time, traditionally at the Metropol restaurant in Zurich. In five exciting presentations, the speakers provided insights into the current state of AI as well as security, compliance and architectural aspects.
Philippe Vuilleumier, former CSO of Swisscom, kicked off the event with his remote presentation on the integration of new (security) technologies in large companies. He highlighted the role of start-up companies in the integration of new technologies and used two examples to show what requirements and challenges existed in terms of security and what lessons were learned from the implementation. In his conclusions, he also addressed the importance of GRC.
Raphael von Thiessen, programme manager of the AI Sandbox Canton of Zurich, took the participants on a tour d'horizon of the projects that the Canton of Zurich is supporting and assisting in the context of its innovation sandbox for AI projects. He presented completed and ongoing projects and showed how the innovation sandbox works and how the canton supports the projects. Finally, he gave an overview of other areas in which projects are being planned.
Sonja Huclova, Data Science Lab, Lead AI Technology ZKB, provided insights into how the Zürcher Kantonalbank is implementing AI projects. She discussed the importance of interdisciplinary collaboration, how the projects are handled and the role of cost control. Sonja also highlighted the areas in which AI applications are used at the Zürcher Kantonalbank. Her conclusion: «AI is a method, not a technology».
In his presentation, Lars Ruddigkeit discussed how AI applications can be checked and controlled. He showed which frameworks and standards can be applied and which areas they cover. He then went on to explain which methods auditors can use to check the integrity, transparency and security of AI applications.
Mathias Bücherl, Group CISO Heidelberg Materials, concluded the event with his remarks on quantifying cybersecurity risks. Using illustrative examples, he showed how risk management works and how it can be measured – and how it does not work. He also highlighted twelve ‘no brainers’ that should be implemented as basic protective measures and how a risk assessment and reporting can be easily created.
The presentations led to in-depth questions in the plenary session and to lively discussions during the subsequent Apero Riche.