AI Security Podcast

Ely Kahn, VP of Product at SentinelOne, discusses the impact of generative AI on cybersecurity, simplifying processes and empowering analysts. Topics include concerns with AI models, comparison to analysts without AI, preventing models from going into autopilot, and the use of multiple LLMs.

How is AI transforming traditional approaches to offensive security, pentesting, security posture management, security assessment, and even code security? Caleb and Ashish spoke to Rob Ragan, Principal Technology Strategist at Bishop Fox about how AI is being implemented in the world of offensive security and what the right way is to threat model an LLM. Questions asked: (00:00) Introductions (02:12) A bit about Rob Ragan (03:33) AI in Security Assessment and Pentesting (09:15) How is AI impacting pentesting? (14:50 )Where to start with AI implementation in offensive Security? (18:19) AI and Static Code Analysis (21:57) Key components of LLM pentesting (24:37) Testing whats inside a functional model? (29:37) Whats the right way to threat model an LLM? (33:52) Current State of Security Frameworks for LLMs (43:04) Is AI changing how Red Teamers operate? (44:46) A bit about Claude 3 (52:23) Where can you connect with Rob Resources spoken about in this episode: https://www.pentestmuse.ai/ https://github.com/AbstractEngine/pentest-muse-cli https://docs.garak.ai/garak/ https://github.com/Azure/PyRIT https://bishopfox.github.io/llm-testing-findings/ https://www.microsoft.com/en-us/research/project/autogen/

What is the current reality for AI automation in Cybersecurity? Caleb and Ashish spoke to Edward Wu, founder and CEO of Dropzone AI about the current capabilities and limitations of AI technologies, particularly large language models (LLMs), in the cybersecurity domain. From the challenges of achieving true automation to the nuanced process of training AI systems for cyber defense, Edward, Caleb and Ashish shared their insights into the complexities of implementing AI and the importance of precision in AI prompt engineering, the critical role of reference data in AI performance, and how cybersecurity professionals can leverage AI to amplify their defense capabilities without expanding their teams. Questions asked: (00:00) Introduction (05:22) A bit about Edward Wu (08:31) What is a LLM? (11:36) Why have we not seen entreprise ready automation in cybersecurity? (14:37) Distilling the AI noise in the vendor landscape (18:02) Solving challenges with using AI in enterprise internally (21:35) How to deal with GenAI Hallucinations? (27:03) Protecting customer data from a RAG perspective (29:12) Protecting your own data from being used to train models (34:47) What skillset is required in team to build own cybersecurity LLMs? (38:50) Learn how to prompt engineer effectively

Cybersecurity expert Daniel Miessler and tech enthusiast Caleb discuss the challenges of integrating AI into cybersecurity strategies. They explore overregulation's impact on AI innovation, the necessity of adaptation to AI-driven world, and fine line between fostering innovation and ensuring security.

Daniel Miessler, Cybersecurity expert, discusses the impact of AI on cybersecurity in 2024. Topics include AI's role in spear phishing and recon, challenges with self-hosted LLMs, and the potential restrictiveness of AI models.

Topics discussed include: custom AI agents, prompt engineering, data loss prevention, artificial general intelligence (AGI), AI's role in data and API security, risks of prompt engineering, and the latest innovations in AI security.

Exploring the deployment of LLMs in enterprises, challenges and security measures, compliance standards, vendor risk assessment, and hot topics in AI. The podcast delves into data protection, copyright laws, and future cybersecurity topics with guest speakers.

In this episode of the AI Cybersecurity Podcast, the hosts discuss LLMs, their evolution, and how they work. They also explore the cost of running LLMs and the challenges of deploying them. The episode concludes with a discussion on the differences between big companies and startups in the AI space and what's hot in AI this week.

In this podcast, the hosts discuss the role of AI in cybersecurity. They cover topics such as learning about AI and its acronyms, artificial general intelligence, AI/ML in security products, different kinds of learning, and what's hot in the AI section. They also highlight the need to understand the principles and risks of AI, establish policies and procedures, and explore advancements in AI such as voice and image recognition.

Ashish Rajan and Caleb Sima, who have been Cybersecurity practitioners and CISOs for over a decade, are combining forces to bring to you how CyberSecurity can be applied to AI without FUD. Each episode discuss a AI Theme and What's Hot in AI. You can expect the episodes on your favorite Podcast Player every two weeks. This is a Audio & Video podcast so you can find video of each episode on AI CyberSecurity Podcast YouTube Channel If you have any AI & CyberSecurity queries or topics you would like us to cover, please reach out to us on info@kaizenteq.com You can also check out our sister podcast - Cloud Security Podcast for all your cloud and cloud native security topics.