ZIMBABWE Information and Communication Technology (ZICT) chairperson Jacob Mutisi says board members should be trained on emerging cyber threats, data protection duties, and the ethical, legal and operational risks posed by artificial intelligence (AI) to strengthen corporate risk oversight.
This comes as board members increasingly face complex technology-related risks as digital transformation accelerates across Zimbabwean firms.
Hence, staying ahead of cybersecurity threats and understanding AI’s operational implications is now essential for effective governance and risk management for companies.
Training programmes can equip directors with the knowledge to identify, assess, and mitigate emerging threats, ensuring compliance with data protection regulations while fostering ethical and legally sound AI deployment.
This strengthens overall corporate resilience in a rapidly evolving digital landscape.
- Mixed-use REIT model best suited for Zimbabwe: FBC Securities
- IIZ lays groundwork for 2026, eyes targeted skills development
- Celebrity endorsement signals Sharpe academy growth drive
- Tanganda taps insider Sharon Kodzanai to steer turnaround
- WestProp to hand over first Pomona apartments by June
“Artificial intelligence presents both opportunity and risk. While AI can improve efficiency and decision-making, its unsafe or unregulated use can result in biased outcomes, privacy violations, intellectual property disputes and strategic errors,” Mutisi said in a statement sent to stakeholders.
“Board members must, therefore, understand where AI is being used within their organisations, how decisions are made and what safeguards are in place.
“As part of effective induction, board members should receive structured training that explains their oversight responsibilities, emerging cyber threats, data protection obligations and the ethical, legal and operational risks associated with AI.”
He explained that this is not about turning board members into technologists, but about ensuring they can ask the right questions, interpret risks correctly and make informed decisions.
“At a time when Zimbabwe is positioning itself as an investment destination and embracing digital transformation, strong governance is essential,” Mutisi said.
“Incorporating cybersecurity, data protection, and safe AI training into board induction processes is a practical and necessary step towards protecting institutions, investors, and the broader economy.”
He said that as boards were constituted at the start of the year, organisations would do well to recognise that digital risk awareness is now a core boardroom competency, not a technical afterthought.
“In today’s digital economy, board members are no longer insulated from technology risks. Cyberattacks, data breaches, and misuse of AI systems now pose direct financial, legal, and reputational threats to organisations.
“Regulators, investors, and the public increasingly expect boards to demonstrate not only oversight but also basic competence and awareness in these areas.
“Cybersecurity is no longer an ICT issue alone; it is a governance and risk issue.”
He said a single ransomware attack or systems breach could cripple operations, expose sensitive customer data, and result in severe regulatory penalties.
“Similarly, data protection failures can lead to litigation, loss of public trust, and sanctions under local and international data protection frameworks,” Mutisi added.
