← Back to articles
Article7 min readCyConex Team

Is It Safe to Use AI on Security Evidence? How CyConex Screens and Sanitises

The most common objection to AI-assisted assurance is a reasonable one: nobody wants to hand their security policies to a black box. This article explains the real risks of pointing AI at security evidence, and how CyConex screens for prompt-injection, sanitises sensitive data before it reaches a model, and keeps everything auditable and in the UK.

Illustration of security evidence screened and sanitised before reaching a secure UK-hosted AI model

Ask a security team whether they want to use AI to accelerate assurance and you will often hear the same hesitation: "I am not sending our security policies and audit evidence to a large language model." It is a reasonable objection, and any serious assurance platform has to answer it before it earns trust.

The concern breaks down into a few specific risks: that sensitive information will be exposed to a model or third party, that malicious content hidden in evidence could manipulate the AI, and that automated conclusions will be opaque and impossible to defend. Each of these is addressable, but only if safety is built into the platform rather than bolted on.

Risk one: hidden instructions in evidence

Evidence is not always benign. A document can contain hidden text designed to manipulate an AI system — a prompt-injection or jailbreak attack that tries to make the model ignore its instructions or leak information. If evidence flows straight into an AI pipeline without inspection, that content becomes an attack surface.

CyConex screens evidence for prompt-injection and jailbreak content before it is embedded or used in a review. Where screening flags a problem, the ingest is blocked and logged, so there is a record of what was rejected and why. Screening before embedding means malicious content never reaches the stage where it could influence a judgement.

Risk two: sending more than necessary to the model

Not every part of a document needs to reach an AI to be useful. Sending the whole thing increases exposure for no benefit. CyConex applies sensitive-data rules that strip and redact content before it is sent to a model, so material that does not need to reach the AI never does.

This is a data-minimisation principle applied to AI: the model sees what it needs to map evidence, surface gaps, and draft structured outputs, and no more. It reduces exposure of sensitive information while preserving the acceleration that makes AI-assisted review worthwhile.

Risk three: opaque, indefensible conclusions

An AI conclusion that cannot be explained is worse than no conclusion, because it cannot be defended to an assessor, auditor, or regulator. CyConex keeps AI-assisted review auditable: agent activity, assessment reasoning, and human validation steps are retained so outputs can be challenged, reviewed, and defended. AI usage and cost are visible, and qualified assessors retain sign-off on every conclusion.

Where the data lives

Data residency matters for UK assurance work. CyConex production services are hosted in UK Azure regions, and customer evidence, assessment outputs, and platform metadata are stored and processed within the United Kingdom. Evidence is encrypted at rest, with organisation-level Transit KEK and HashiCorp Vault options for teams that require stronger key-management guarantees.

Safe by default, not by configuration

The important point is that these protections are not a mode you switch on. Screening, sanitisation, UK hosting, encryption, and auditability are how the platform works by default. That is what makes it reasonable to point AI at security evidence: the safeguards are structural, and the human stays accountable.

AI can genuinely transform assurance — reading large volumes of evidence, mapping it to controls, and highlighting gaps in minutes rather than days. But that value is only acceptable if it does not come at the cost of control over your most sensitive material. Screening what goes in, sanitising what reaches the model, keeping everything in the UK, and retaining human sign-off is how CyConex makes the trade-off a safe one.

More to read

ArticleCAF as a Continuous Programme, Not a Point-in-Time AuditArticleFrom Cyber Essentials to CAF: A Maturity PathArticleFrom Evidence to Assurance: Why Cyber Compliance Needs a Defensible Evidence Pack