Paper Type
ERF
Abstract
This paper proposes an AI-driven cybersecurity framework designed to enhance real-time threat detection, reduce response time, and support continuous compliance monitoring. The framework integrates classical machine learning techniques for anomaly detection, reinforcement learning for adaptive remediation, and a compliance engine to align with regulatory standards such as GDPR and NIST CSF. A human oversight interface ensures transparency and accountability in AI-driven decisions. Unlike traditional security tools that operate in isolation, the proposed framework bridges operational security and governance functions, offering a unified approach to cybersecurity management. The framework is described in detail and positioned for implementation in simulated enterprise environments. This work contributes to the field of IT governance and risk management by offering a scalable, regulation-aware model for AI-enhanced security automation.
Paper Number
1208
Recommended Citation
Esnaashari, Shadi and Jabalameli, Mansoure, "An AI-Driven Framework for Autonomous Network Vulnerability Management" (2025). AMCIS 2025 Proceedings. 14.
https://aisel.aisnet.org/amcis2025/sig_sec/sig_sec/14
An AI-Driven Framework for Autonomous Network Vulnerability Management
This paper proposes an AI-driven cybersecurity framework designed to enhance real-time threat detection, reduce response time, and support continuous compliance monitoring. The framework integrates classical machine learning techniques for anomaly detection, reinforcement learning for adaptive remediation, and a compliance engine to align with regulatory standards such as GDPR and NIST CSF. A human oversight interface ensures transparency and accountability in AI-driven decisions. Unlike traditional security tools that operate in isolation, the proposed framework bridges operational security and governance functions, offering a unified approach to cybersecurity management. The framework is described in detail and positioned for implementation in simulated enterprise environments. This work contributes to the field of IT governance and risk management by offering a scalable, regulation-aware model for AI-enhanced security automation.
When commenting on articles, please be friendly, welcoming, respectful and abide by the AIS eLibrary Discussion Thread Code of Conduct posted here.
Comments
SIGSEC