Question 1

An organization utilizes AI-enabled mapping software to plan routes for delivery drivers. A driver
following the AI route drives the wrong way down a one-way street, despite numerous signs. Which
of the following biases does this scenario demonstrate?

Accepted Answer

D

Explanation: Automation bias is the tendency for humans to over-rely on automated systems, trusting their outputs even when there is contradictory information from other sources. In this scenario, the driver excessively trusted the AI-enabled mapping software's recommendation and, as a result, ignored clear, real-world evidence—the numerous signs indicating a one-way street. The driver's failure to apply critical judgment and override the incorrect automated instruction is a classic manifestation of automation bias, where the human cedes decision-making authority to the machine, leading to an error.

Question 2

Which of the following BEST reduces the risk of exposing sensitive data through the output of large language models (LLMs) in applications?

Accepted Answer

C

Explanation: The most effective method to prevent large language models (LLMs) from exposing sensitive data in their output is to ensure they are never exposed to it in the first place. Data sanitization techniques, such as masking, redaction, or tokenization, are applied to the training data and user prompts to remove or anonymize personally identifiable information (PII) and other sensitive data before the LLM processes it. By cleaning the input, the model does not learn the sensitive information and therefore cannot inadvertently reproduce or "regurgitate" it in its responses. This is a direct, preventative control that addresses the root cause of the risk.

Question 3

The PRIMARY benefit of implementing moderation controls in generative AI applications is that it can:

Accepted Answer

D

Explanation: The primary purpose of implementing moderation controls in generative AI is to serve as a safety mechanism. These controls are designed to analyze content generated by the model against a predefined set of policies to detect and filter outputs that are harmful, inappropriate, or otherwise undesirable. This includes categories such as hate speech, harassment, self-harm, and explicit content. By filtering such content, organizations can mitigate risks, protect users, and ensure the AI application operates within acceptable ethical and safety boundaries.

Question 4

Embedding unique identifiers into AI models would BEST help with:

Accepted Answer

B

Explanation: Embedding unique identifiers into AI models, a technique known as digital watermarking or fingerprinting, is a primary method for protecting the intellectual property (IP) of the model. This unique marker serves as a proof of origin, allowing the owner to track the model's distribution and assert ownership if it is stolen, leaked, or used without authorization. It directly links the model artifact back to its creator or legal owner, which is crucial for provenance, accountability, and IP rights enforcement. This technique does not inherently provide security against unauthorized access, eliminate bias, or detect adversarial attacks but focuses specifically on ownership verification.

Question 5

The PRIMARY ethical concern of generative AI is that it may:

Accepted Answer

B

Explanation: The primary ethical concern of generative AI is its potential to cause significant information integrity issues. By its nature, generative AI creates new content that can be indistinguishable from human-created content but may be factually incorrect, misleading, or entirely fabricated (i.e., "hallucinations"). This capability directly undermines the reliability, trustworthiness, and authenticity of information. The potential for mass generation of disinformation and deepfakes poses a fundamental threat to societal trust and the integrity of the information ecosystem, making it the most central ethical challenge.

Question 6

Which of the following recommendations would BEST help a service provider mitigate the risk of lawsuits arising from generative AI’s access to and use of internet data?

Accepted Answer

A

Explanation: The most significant legal risk associated with generative AI using internet data is intellectual property (IP) and copyright infringement. Activating filtering logic to exclude data with IP flags is a direct, preventative technical control. This measure proactively reduces the likelihood of the AI model ingesting, training on, or reproducing protected content without authorization. By addressing the risk at the data ingestion stage, the service provider directly mitigates the root cause of potential infringement lawsuits, making it the most effective recommendation among the choices.

Question 7

Which of the following AI system vulnerabilities is MOST easily exploited by adversaries?

Accepted Answer

B

Explanation: Weak controls for access to the AI model represent a fundamental cybersecurity vulnerability. Exploiting poor access controls (e.g., default credentials, lack of multi-factor authentication, insecure APIs) typically requires less specialized knowledge and fewer resources than executing AI-specific attacks. An adversary can leverage common hacking tools and techniques to gain unauthorized access, which can lead to model theft, data poisoning, or system manipulation. This makes it the most accessible and, therefore, most easily exploited vulnerability compared to the other, more technically complex options.

Question 8

Which of the following would BEST help mitigate vulnerabilities associated with hidden triggers in generative AI models?

Accepted Answer

C

Explanation: Hidden triggers, also known as backdoors or trojans, are vulnerabilities intentionally embedded in an AI model during training. They cause the model to produce a specific, often malicious, output when a specific input (the trigger) is present. Adversarial training is the most direct and effective mitigation technique. This process involves intentionally generating adversarial examples, which can include potential triggers, and using them to retrain the model. By exposing the model to these inputs and teaching it the correct, non-triggered response, the training process effectively neutralizes the backdoor's influence and hardens the model against such manipulations. This is a proactive defense that directly addresses the vulnerability within the model itself.

Question 9

A financial institution plans to deploy an AI system to provide credit risk assessments for loan
applications. Which of the following should be given the HIGHEST priority in the system’s design to
ensure ethical decision-making and prevent bias?

Accepted Answer

C

Explanation: In high-stakes applications like credit risk assessment, ensuring ethical decision-making is paramount. The "human-in-the-loop" (HITL) approach, where the AI system provides advisory outputs and a human expert makes the final decision, is the highest priority. This design embeds accountability and allows for contextual judgment that an AI model cannot replicate. A human expert can override potentially biased or unfair automated recommendations, providing a critical safeguard against algorithmic discrimination and ensuring that decisions are both explainable and ethically sound. This approach directly addresses the core requirement of preventing bias at the point of decision.

Question 10

An organization concerned about the ethical and responsible use of a newly developed AI product should consider implementing:

Accepted Answer

C

Explanation: An accountability model establishes a clear governance structure, defining roles, responsibilities, and oversight mechanisms for AI systems. This framework is fundamental to ensuring that an AI product is used ethically and responsibly throughout its lifecycle. It addresses the organization's concerns by creating clear lines of authority for managing risks related to fairness, bias, transparency, and societal impact. This model provides the foundation upon which specific tools and practices, such as model cards and security protocols, are implemented and enforced.

Question 11

Which of the following is the MOST serious consequence of an AI system correctly guessing the personal information of individuals and drawing conclusions based on that information?

Accepted Answer

C

Explanation: The most serious and direct consequence is the violation of an individual's privacy by revealing sensitive information without their knowledge or consent. An AI system that correctly infers personal data (e.g., health status, political affiliation, sexual orientation) from seemingly non-sensitive inputs creates new, potentially harmful knowledge. This act is a fundamental breach of privacy and informational self-determination, which can lead to discrimination, manipulation, or personal distress. The other consequences, such as litigation or a decline in trust, are secondary effects that stem from this primary harm.

Question 12

An organization needs large data sets to perform application testing. Which of the following would BEST fulfill this need?

Accepted Answer

C

Explanation: Open-source data repositories are centralized platforms (e.g., Kaggle, UCI Machine Learning Repository, Google Dataset Search) that host a wide variety of large, often cleaned and labeled, datasets. They are specifically designed to provide data for research, development, and testing of applications, particularly in the AI and machine learning domains. Using these repositories is the most direct, efficient, and common method for an organization to acquire the large-scale data needed for comprehensive application testing without the significant overhead of collecting and preparing the data from scratch.

Question 13

An organization's CIO provided the AI steering committee with a list of AI technologies in use and
tasked them with categorizing the technologies by risk. Which of the following should the committee
do FIRST?

Accepted Answer

C

Explanation: The foundational step in any technology risk management process is asset identification and management. Before the AI steering committee can categorize technologies by risk, they must first ensure these technologies are formally recognized, documented, and tracked as organizational assets. Including them in the asset inventory provides a definitive list, establishes accountability, and creates the necessary baseline for all subsequent risk assessment, vulnerability analysis, and categorization activities. This aligns with established governance frameworks where asset inventory precedes risk analysis.

Question 14

Which of the following BEST describes how supervised learning models help reduce false positives in cybersecurity threat detection?

Accepted Answer

C

Explanation: Supervised learning is a machine learning paradigm where an algorithm learns from a dataset that has been manually labeled with the correct outcomes. In cybersecurity, this involves training a model on historical data where events are explicitly tagged as either "malicious" or "benign." The model learns the patterns and features that distinguish these two classes. By training on a high-quality, well-labeled dataset that accurately represents both legitimate and threatening activities, the model can build a robust decision boundary. This allows it to more accurately classify new, unseen data, thereby reducing the number of times it incorrectly flags legitimate activity as a threat (a false positive).

Question 15

As organizations increasingly rely on vendors to develop AI systems, which of the following is the MOST effective way to monitor vendors and ensure compliance with ethical and security standards?

Accepted Answer

A

Explanation: Conducting regular, independent audits is the most effective method for monitoring vendor compliance. Audits provide direct, verifiable assurance that the vendor's processes, controls, and outputs align with contractually mandated ethical and security standards. This approach moves beyond trust-based models like self-attestation, offering a structured and evidence-based mechanism to assess the entire AI development lifecycle. It allows the contracting organization to proactively identify gaps, enforce accountability, and ensure that principles of fairness, transparency, and security are being actively implemented, rather than just claimed.

Free Isaca AAISM Actual Exam Questions