AI Security
Terms
Leaders Need
You don’t need to understand the code. You need to understand the risk. These ten terms define the security landscape every executive must fluently navigate in 2026 — from boardroom AI governance decisions to vendor due diligence, regulatory conversations, and incident reviews.
AI security is no longer a purely technical domain — it is a business risk domain that lands directly on executive and board agendas. The EU AI Act’s August 2026 high-risk enforcement date, GDPR’s accountability principles, and the rising wave of US state AI regulations all create personal accountability for directors and executives in organisations that deploy AI systems without adequate security governance. Understanding the vocabulary is the minimum viable competency for anyone who approves an AI deployment, signs a vendor contract, or sets risk appetite for an AI programme.
The ten terms in this reference are not the most technically complex concepts in AI security — they are the most consequential ones for executive decision-making. Prompt injection drives the most active attack campaigns against enterprise AI. Shadow AI creates compliance exposure that legal and security teams cannot close without executive mandate. Audit trails determine whether your organisation can demonstrate responsible AI use to regulators, courts, and insurers. Each term below includes a plain-language definition and two concrete leader actions — because understanding a risk without knowing what to do about it is not governance.
The Cisco State of AI Security 2026 report places the executive responsibility clearly: only 29% of organisations are prepared to secure their agentic AI deployments — yet most are deploying anyway. The gap between deployment velocity and security readiness is the gap where incidents happen. KPMG’s 2026 survey found 54% of organisations are actively deploying AI agents — up from 11% two years ago. IBM’s 2024 Cost of a Data Breach report confirmed that AI-related breaches now cost an average of $4.88 million per incident, with organisations that have AI security controls recovering 108 days faster than those without.
The Gartner prediction is unambiguous: by end-2026, 40% of enterprise applications will integrate AI agents. The McKinsey 2026 survey found Responsible AI maturity at only 2.3 on a 5-point scale across the industry — meaning most organisations are deploying AI faster than they are maturing their security and governance programmes. These ten terms are the framework that allows every leader, regardless of technical background, to ask the right questions, demand the right evidence, and make the right decisions when AI security is on the table.
“The question is no longer whether boards and executives need to understand AI security. Courts are establishing precedent on director liability for AI risks. Insurers are evaluating AI governance maturity before writing D&O policies. Regulators are requesting audit trails and risk registers in routine examinations. The executives who treat these ten terms as specialist vocabulary they can delegate are the ones who will face the hardest questions when something goes wrong — and they will not have the vocabulary to answer.”
Aon — AI Risk 2026: What Business Leaders Need to Know · March 2026 / Governance Intelligence — How AI Will Redefine Compliance, Risk and Governance in 2026| # | Term | Plain-Language Definition | Board-Level Question to Ask | Severity | Regulatory Link |
|---|---|---|---|---|---|
| T1 | Prompt Injection | Malicious input tricks the AI into ignoring instructions or performing unsafe actions | “What could an attacker instruct this agent to do through content it reads?” | CRITICAL | OWASP LLM01:2025 · EU AI Act Art.9 |
| T2 | Data Leakage | Sensitive data exposed through AI outputs, logs, prompts, or connected tools | “What data can this AI access, and where does that data go?” | CRITICAL | GDPR Art.32 · EU AI Act Art.9 · OWASP LLM02 |
| T3 | Hallucination | AI produces false, fabricated answers with apparent confidence | “How are we verifying AI outputs before acting on them?” | HIGH | OWASP LLM09 · EU AI Act Art.13 transparency |
| T4 | Model Drift | Model performance silently degrades as data and conditions change over time | “How do we know our AI systems are still performing as well as when deployed?” | HIGH | EU AI Act Art.72 · NIST AI RMF Measure |
| T5 | Shadow AI | Employees using unapproved AI tools outside governance and security controls | “Do we know every AI tool being used in this organisation?” | HIGH | GDPR data processor obligations · EU AI Act scope |
| T6 | Supply Chain Risk | Risk from third-party models, plugins, datasets, and vendors powering the AI | “What security requirements do we impose on our AI vendors?” | CRITICAL | OWASP LLM03 · EU AI Act Art.25 third-party |
| T7 | Guardrails | Technical and process controls limiting unsafe behaviour, outputs, and actions | “What is this AI system explicitly prohibited from doing?” | CONTROL | EU AI Act Art.9 · NIST AI RMF Manage · ISO 42001 Cl.8 |
| T8 | Human-in-the-Loop | Human review, approval, or override before high-impact AI actions | “Which AI decisions require human sign-off and are those gates being enforced?” | REQUIRED | EU AI Act Art.14 mandatory HITL for high-risk AI |
| T9 | Least Privilege | AI agents get only the minimum permissions needed for their specific task | “What is the worst damage this agent could cause with its current permissions?” | CRITICAL | OWASP ASI03 · NIST AI RMF · ISO 27001 A.9 |
| T10 | Audit Trail | Immutable record of prompts, model versions, tool calls, actions, and approvals | “If an incident occurred today, could we reconstruct exactly what happened?” | REQUIRED | EU AI Act Art.12 · GDPR accountability principle |
Ten Terms.
One Mandate:
Own the Risk.
AI security literacy for leaders is not about understanding how transformers work or what a convolutional neural network does. It is about understanding the risk profile of the systems your organisation is operating, the controls that should be in place, and the questions you need to ask — and recognise the quality of the answers you receive. These ten terms give you that vocabulary. Prompt injection tells you to ask whether untrusted content can manipulate your agent. Data leakage tells you to ask what sensitive data the AI can access and where it goes. Model drift tells you to ask how you know the AI is still performing as intended. Shadow AI tells you to ask whether you even know what AI your organisation is using.
The regulatory stakes in 2026 make this a leadership imperative, not an optional technical interest. Aon’s global risk survey confirms that over 90% of insurance decision-makers now consider AI-driven incidents a material risk. Courts are beginning to establish precedent on director liability for AI risks that were foreseeable and unaddressed. The EU AI Act creates fines of up to €35M or 7% of global revenue for violations — penalties that flow upward to the organisations and their boards, not just to the teams that built the systems. The executives who understand these ten terms are the ones who ask the right questions, demand the right evidence, and build the governance programmes that close the gap between deployment velocity and security readiness.
The most consequential pairing in this list is Audit Trail (T10) and Human-in-the-Loop (T8) — because they are the two terms that determine whether your AI governance programme is aspirational or operational. A governance programme without audit trails cannot demonstrate to regulators or courts that its policies were enforced. A governance programme without defined HITL gates for high-stakes decisions has no practical mechanism for the human oversight that both the EU AI Act and basic accountability principles require. These two are not technical niceties — they are the legal and operational foundations of every other governance commitment.
The path forward is systematic, not spectacular. Inventory your AI systems. Classify them by risk level. Define guardrails proportionate to that risk. Implement audit trails. Establish HITL gates for high-stakes decisions. Create and enforce an approved AI tools list. Review agent permissions quarterly. Monitor model performance continuously. Require vendor security posture assessments. None of these steps requires deep technical knowledge — they require the leadership will to make them happen, the vocabulary to specify them clearly, and the accountability structures to ensure they are maintained. That is what these ten terms provide: the minimum viable executive AI security literacy for 2026.
Prompt injection finds the gap between your instructions and what the AI will actually do. Data leakage finds the gap between what data you think the AI can access and what it actually can. Hallucination finds the gap between confident output and verified fact. Model drift finds the gap between deployment-day performance and today. Shadow AI finds the gap between your approved tool list and what your team is actually using. Supply chain risk finds the gap in your vendors. Guardrails define the gap that the AI cannot cross. HITL puts a human at the critical gaps. Least privilege minimises the blast radius of every other gap. And the audit trail proves — to you, to regulators, to courts, and to your board — that you were managing all of it. That is AI governance. These are its ten terms.