EC-Council Launches Global CISO Council to Tackle AI Governance and Emerging Tech Security Risks

EC-Council announces the establishment of the Global CISO Council (GCC), an independent, invitation-only forum uniting Chief Information Security Officers worldwide to develop practical frameworks addressing AI governance, emerging technology risks, and regulatory compliance challenges. Recognising the trillion-dollar cyber exposure from rapid AI deployment, GCC positions itself as the premier CISO-led authority shaping enterprise-ready security standards for generative AI, cloud-native architectures, and OT/IoT convergence.
Unlike vendor-driven initiatives, GCC operates as a neutral 501(c)(6) platform enabling peer collaboration among CISOs from Fortune 500s, governments, and critical infrastructure operators. Core working groups focus on operationalising AI risk management, covering model governance, adversarial attack mitigation, supply-chain vulnerabilities, and board-level reporting aligned with the EU AI Act, NIST AI RMF, and national regulations.
The council addresses the maturity gap where 87% organisations deploy AI, but only 24% have governance frameworks, per EC-Council research. GCC deliverables include reference architectures, incident response playbooks, and maturity assessments feeding into global standards bodies while informing EC-Council’s Certified CISO v4 and AI governance certifications.
Founding members represent diverse sectors, ensuring balanced perspectives on public-private tensions in AI security. Quarterly summits rotate across APAC, EMEA, Americas, facilitating cross-jurisdictional knowledge exchange. EC-Council CEO Jayanth Rama Varma emphasised GCC’s role in accelerating “secure-by-design” AI adoption amid escalating threats from nation-state actors weaponising open-source models.
GCC applications open Q2 2026, targeting 200 inaugural members; outputs will be public domain, accelerating industry-wide resilience against AI-amplified cyber risks.