Sign up to save your podcasts
Or
Share Ep150: Security Considerations for Generative AI with CyberArk, Fortra and Sysdig
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Ep150: Security Considerations for Generative AI with CyberArk, Fortra and Sysdig
Security leaders from CyberArk, Fortra, and Sysdig share actionable strategies for securely implementing generative AI and reveal real-world insights on data protection and agent management.
Topics Include:
- Panel explores practical security approaches for GenAI from prototype to production
- Three-phase framework discussed: planning, pre-production, and production security considerations
- Security must be built-in from start - data foundation is critical
- Understanding data location, usage, transformation, and regulatory requirements is essential
- Fortra's security conglomerate approach integrates with AWS native tools and partners
- Machine data initially easier for compliance - no PII or HIPAA concerns
- Identity paradigm shift: agents can dynamically take human and non-human roles
- 97% of organizations using AI tools lack identity and access policies
- Security responsibility increases as you move up the customization stack
- OWASP Top 10 for GenAI addresses prompt injection and data poisoning
- Rigorous model testing including adversarial attacks before deployment is crucial
- Sysdig spent 6-9 months stress testing their agent before production release
- Tension exists between moving fast and implementing proper security controls
- Different security approaches needed based on data sensitivity and model usage
- Zero-standing privilege and intent-based policies critical for agent management
- Multi-agent systems create "Internet of Agents" with exponentially multiplying risks
- Discovery challenge: finding where GenAI is running across enterprise environments
- API security and gateway protection becoming critical with acceptable latency
- Top customer need: translating written AI policies into actionable controls
- Threat modeling should focus on impact rather than just vulnerability severity
Participants:
- Prashant Tyagi - Go-To-Market Identity Security Technology Strategy Lead, CyberArk
- Mike Reed – Field CISO, Cloud Security & AI, Fortra
- Zaher Hulays – Vice President Strategic Partnerships, Sysdig
- Matthew Girdharry - WW Leader for Observability & Security Partnerships, Amazon Web Services
Further Links:
- CyberArk: Website – LinkedIn – AWS Marketplace
- Fortra: Website – LinkedIn – AWS Marketplace
- Sysdig: Website – LinkedIn – AWS Marketplace
See how Amazon Web Services gives you the freedom to migrate, innovate, and scale your software company at https://aws.amazon.com/isv/
View all episodes
By AWS - Amazon Web Services
5
1010 ratings
Security leaders from CyberArk, Fortra, and Sysdig share actionable strategies for securely implementing generative AI and reveal real-world insights on data protection and agent management.
Topics Include:
- Panel explores practical security approaches for GenAI from prototype to production
- Three-phase framework discussed: planning, pre-production, and production security considerations
- Security must be built-in from start - data foundation is critical
- Understanding data location, usage, transformation, and regulatory requirements is essential
- Fortra's security conglomerate approach integrates with AWS native tools and partners
- Machine data initially easier for compliance - no PII or HIPAA concerns
- Identity paradigm shift: agents can dynamically take human and non-human roles
- 97% of organizations using AI tools lack identity and access policies
- Security responsibility increases as you move up the customization stack
- OWASP Top 10 for GenAI addresses prompt injection and data poisoning
- Rigorous model testing including adversarial attacks before deployment is crucial
- Sysdig spent 6-9 months stress testing their agent before production release
- Tension exists between moving fast and implementing proper security controls
- Different security approaches needed based on data sensitivity and model usage
- Zero-standing privilege and intent-based policies critical for agent management
- Multi-agent systems create "Internet of Agents" with exponentially multiplying risks
- Discovery challenge: finding where GenAI is running across enterprise environments
- API security and gateway protection becoming critical with acceptable latency
- Top customer need: translating written AI policies into actionable controls
- Threat modeling should focus on impact rather than just vulnerability severity
Participants:
- Prashant Tyagi - Go-To-Market Identity Security Technology Strategy Lead, CyberArk
- Mike Reed – Field CISO, Cloud Security & AI, Fortra
- Zaher Hulays – Vice President Strategic Partnerships, Sysdig
- Matthew Girdharry - WW Leader for Observability & Security Partnerships, Amazon Web Services
Further Links:
- CyberArk: Website – LinkedIn – AWS Marketplace
- Fortra: Website – LinkedIn – AWS Marketplace
- Sysdig: Website – LinkedIn – AWS Marketplace
See how Amazon Web Services gives you the freedom to migrate, innovate, and scale your software company at https://aws.amazon.com/isv/
More shows like AWS for Software Companies Podcast
View all
WSJ Tech News Briefing
1,641 Listeners
Security Now (Audio)
1,998 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
638 Listeners
The Cloudcast
156 Listeners
a16z Podcast
1,081 Listeners
The Strategy Skills Podcast: Strategy | Leadership | Critical Thinking | Problem-Solving
105 Listeners
AWS Podcast
205 Listeners
NVIDIA AI Podcast
339 Listeners
Kubernetes Podcast from Google
182 Listeners
Practical AI
206 Listeners
Morning Brew Daily
2,987 Listeners
All-In with Chamath, Jason, Sacks & Friedberg
9,634 Listeners
Cyber Security Headlines
134 Listeners
The AI Daily Brief: Artificial Intelligence News and Analysis
549 Listeners
HBR On Leadership
163 Listeners