Cybersecurity and AI: Legal and Ethical Challenges
Artificial intelligence is rapidly transforming the cybersecurity landscape—reshaping how threats are detected, systems are defended, and breaches are understood. At the same time, AI introduces new vulnerabilities, governance challenges, and legal ambiguities that organizations must confront head-on.
This intensive one-day symposium brings together legal experts, policymakers, privacy officers, and cybersecurity professionals to examine the legal, ethical, and strategic implications of AI in cybersecurity. Through a series of expert-led sessions and scenario-based exercises, participants will explore real-world risks and opportunities, regulatory pressures, and governance frameworks for responsible AI adoption in high-stakes digital environments.
Imran advises clients across all industries on a wide array of technology-related matters, including outsourcing, cloud computing, SaaS, strategic alliances, technology development, system procurement and implementation, technology licensing and transfer, distribution, open source software, and electronic commerce. As part of his cybersecurity practice, Imran works with clients to develop and implement strategies related to cyber threats. He advises on legal risk assessments, compliance, due diligence, security, and data breach incident preparedness and response. Imran often acts as “breach counsel” in the event of a cybersecurity incident, and has extensive experience in managing complex cross-border security incidents. He also provides representation in the event of an investigation, enforcement action or litigation. Imran is the author of Canada’s first legal incident preparation and response handbook Cybersecurity in Canada: A Guide to Best Practices, Planning, and Management, 2nd Edition (LexisNexis, March 2021).
Noemi is a Partner in Deloitte’s Data Protection and Privacy practice in Toronto. She provides privacy, data protection, and cyber strategy services for organizations seeking to deliver new and better services for their clients and the community, advising in the areas of regulatory compliance, data protection, information privacy, and risk management. She specializes in serving technology, healthcare, retail, and public sector clients participating in new initiatives that involve the collection or use of personal information.
Prior to Deloitte, she articled at Borden Ladner Gervais LLP and was a Visiting Researcher at the University of Washington Tech Policy Lab, where she looked at privacy in the context of the Internet of Things, AI, connected and autonomous vehicles, and robotics. Noemi holds a BA from the University of Waterloo, a Master’s in Economic Policy from McMaster University, and a law degree from the University of Toronto Faculty of Law. She is licensed to practice law in Ontario.
Artificial Intelligence Primer (Recorded Content)
Provides an introduction to AI concepts including machine learning, deep learning, and natural language processing, with attention to privacy, security, ethical considerations, bias, and fairness in AI applications.
• Dr. Avner Levin, Professor, Lincoln Alexander School of Law and the business program at Ted Rogers School of Management
Managing Ethical AI in Cybersecurity - Governance Structures as a Foundation for Best Practices
Explores how AI governance structures support secure and ethical AI adoption in cybersecurity, addressing risks, compliance, and public trust. Covers core governance principles, relevant regulatory frameworks, and lessons from real-world failures where governance gaps led to security vulnerabilities.
• Kathrin Gardhouse, Policy Lead, AIGS Canada
• Jake Effoduh, Assistant Professor, Lincoln Alexander School of Law
Dissecting the Impact of Artificial Intelligence on Cybersecurity
Analyzes the dual role of AI in cybersecurity, highlighting threats such as AI-generated attacks and vulnerabilities like training data poisoning and model drift. Examines AI-driven threat detection capabilities, security requirements for AI systems, and how governance failures can amplify cybersecurity risks.
• Dr. Jeff Schwartzentruber, Sr. Machine Learning Scientist, eSentire
Implementing AI in Cybersecurity: A Focused Industry Analysis
Explores AI security risks, adoption challenges, and regulatory pressures across key industry sectors. Defines elements of successful and secure AI implementation in cybersecurity contexts.
• Anthony Hémond, Senior Privacy Counsel, Air Canada
• Jasbir Kooner, Director, IT - Artificial Intelligence and Cybersecurity, Englobe Corp
• Ali Arasteh, Head of Canada, Mandiant Consulting Services
Scenario-Based Exercise: AI in Cybersecurity Implementation
Participants collaboratively assess security risks and governance considerations across the lifecycle of AI-enabled cybersecurity solutions, from planning through decommissioning. The exercise builds practical understanding of risk management and oversight strategies for secure AI implementation.
• Imran Ahmad, Partner, Head of Technology, Co-Head of Information Governance, Privacy and Cybersecurity, Norton Rose Fulbright Canada LLP
• Noemi Chanda, Partner, Data Protection and Privacy Leader, Cyber Risk, Deloitte LLP
Preparing for the Next Generation of AI Cybersecurity Challenges
Explores emerging AI-driven cybersecurity threats, evolving regulatory landscapes, and the future of AI-enhanced security solutions. Provides strategic guidance and best practices to help organizations prepare for and manage future AI-related cybersecurity risks.
• Ben Davies, Chief Information Officer, Vector Institute
