filmov
tv
Generative AI - cybersecurity opportunities & challenges
Показать описание
With over 19 years in the IT industry, Ben Verschaeren is a seasoned professional and the Director of Global Solutions at Sophos.
Based in Melbourne, he leads global strategic initiatives, educates on threat landscapes, and develops training tools focusing on real-world exploits.
Ben also directs a global sales engineering team responding to RFPs, and a software engineering team creating high-quality products for various uses. His prior roles include serving as a Solution Architect at JB HiFi, Australia's largest retailer, and at Thiess, the leading mining and construction company in Australia.
Ben’s unique blend of sales and engineering experience across diverse sectors enables him to drive tech-forward initiatives with an innovative approach, affirming his position as a key asset in the industry.
In this interview, Ben kicked off the interview by sharing his insights on drivers into the wide-spread popularity of the latest AI technology – “generative AI”.
00:11 – What is driving the enthusiasm with the latest AI breakthrough?
01:13 - Are we drowning in the sea of fear-mongering and hype?
01:34 - Leveraging machine learning and deep learning for malware detection is not new
02:01 - Successful detection of malware written using generative AI
02:17 - What is the key message to skeptical cyber defenders about Generative AI threats?
02:49 - 1) Don't be complacent 2) Understand the technology 3) Stay alert as tech is advancing fast
On discussing how generative AI could transform the cybersecurity landscape, Ben acknowledged that it could help increase the productivity of cyber defenders, as an “AI” personal assistant – such as “help you write code” or “help you write query”.
However, he also cautioned that the technology also introduces new threats.
Elaborating on some of the emerging threats, he said that contrary to expectations, malware generated by LLM can be more easily detected than phishing emails and synthetic voice.
To mitigate against such threats, he suggested enhancing business processes and controls (for example, robust fund transfer authorisation, to mitigate phishing risk). He also recommended conducting user awareness training regularly to align with the fast-evolving landscape of phishing tactics, emphasising the importance of understanding the "why."
Another threat is the potential of generative AI to “hallucinate” when making recommendations for software libraries. He pointed out this issue underscores the need to maintain a SBOM (software bill of materials), and implementing quality controls throughout the software development process.
Ben also recommended that organisations looking to embrace AI, develop an “AI policy”, providing guidance in areas such as the types of data or models that to be used during training and deployment. He also shared that middleware solutions are available to anonymise the data entered in the prompt, and check that no personally identifiable information (PII) is included.
Wrapping up, Ben notes that rapid pace of generative AI development and “the landscape is changing everyday”, and advises cyber defenders to “stay on top”, “don’t be complacent”, and it is “another area where and different threats are emerging every day”.
Recorded at Cloud Expo Asia, Singapore Marina Bay Sands, 12th October 2023
Stay with us:
#misscyberpenny
#generativeai
#largelanguagemodels
#cyberthreats
#phishing #synthetic #deepfake
#cyberdefense
#dataprotection
Based in Melbourne, he leads global strategic initiatives, educates on threat landscapes, and develops training tools focusing on real-world exploits.
Ben also directs a global sales engineering team responding to RFPs, and a software engineering team creating high-quality products for various uses. His prior roles include serving as a Solution Architect at JB HiFi, Australia's largest retailer, and at Thiess, the leading mining and construction company in Australia.
Ben’s unique blend of sales and engineering experience across diverse sectors enables him to drive tech-forward initiatives with an innovative approach, affirming his position as a key asset in the industry.
In this interview, Ben kicked off the interview by sharing his insights on drivers into the wide-spread popularity of the latest AI technology – “generative AI”.
00:11 – What is driving the enthusiasm with the latest AI breakthrough?
01:13 - Are we drowning in the sea of fear-mongering and hype?
01:34 - Leveraging machine learning and deep learning for malware detection is not new
02:01 - Successful detection of malware written using generative AI
02:17 - What is the key message to skeptical cyber defenders about Generative AI threats?
02:49 - 1) Don't be complacent 2) Understand the technology 3) Stay alert as tech is advancing fast
On discussing how generative AI could transform the cybersecurity landscape, Ben acknowledged that it could help increase the productivity of cyber defenders, as an “AI” personal assistant – such as “help you write code” or “help you write query”.
However, he also cautioned that the technology also introduces new threats.
Elaborating on some of the emerging threats, he said that contrary to expectations, malware generated by LLM can be more easily detected than phishing emails and synthetic voice.
To mitigate against such threats, he suggested enhancing business processes and controls (for example, robust fund transfer authorisation, to mitigate phishing risk). He also recommended conducting user awareness training regularly to align with the fast-evolving landscape of phishing tactics, emphasising the importance of understanding the "why."
Another threat is the potential of generative AI to “hallucinate” when making recommendations for software libraries. He pointed out this issue underscores the need to maintain a SBOM (software bill of materials), and implementing quality controls throughout the software development process.
Ben also recommended that organisations looking to embrace AI, develop an “AI policy”, providing guidance in areas such as the types of data or models that to be used during training and deployment. He also shared that middleware solutions are available to anonymise the data entered in the prompt, and check that no personally identifiable information (PII) is included.
Wrapping up, Ben notes that rapid pace of generative AI development and “the landscape is changing everyday”, and advises cyber defenders to “stay on top”, “don’t be complacent”, and it is “another area where and different threats are emerging every day”.
Recorded at Cloud Expo Asia, Singapore Marina Bay Sands, 12th October 2023
Stay with us:
#misscyberpenny
#generativeai
#largelanguagemodels
#cyberthreats
#phishing #synthetic #deepfake
#cyberdefense
#dataprotection
0:04:58
Generative AI - cybersecurity opportunities & challenges
0:06:19
AI in Cybersecurity
0:09:09
Using Generative AI for CyberSecurity Work
0:22:19
Generative AI – cybersecurity opportunities & challenges
0:01:46
Generative AI: Risks and Opportunities for Cybersecurity
0:24:49
Generative AI in Cybersecurity: Rise of the Machines?
0:04:30
Generative AI for Cybersecurity - Course Overview
0:07:31
GENERATIVE AI CYBERSECURITY SOLUTION - MICROSOFT AI
1:17:16
Ethical Hacking & Generative AI Fusion 1 | AI in Ethical Hacking
0:06:13
The Cybersecurity Risks of Generative AI and ChatGPT
0:08:28
Learn Cybersecurity with Generative AI
0:00:19
How will generative AI impact cybersecurity?
0:02:56
The Role of Generative AI in Cybersecurity
0:00:58
What are the CYBER SECURITY risks of generative AI? #shorts #openai #chatgpt
0:07:31
Make $660/Day with Free Google Generative AI Certificates
0:12:50
Generative AI and the Cybersecurity Response
0:01:47
Cybersecurity Risks of Generative AI: Safeguard Your Business from Emerging Threats
0:05:47
How is Generative AI Impacting Cyber Security (with Brian Murphy, CEO of ReliaQuest)
0:13:43
Will AI Take Over Cybersecurity Jobs? Here's the Truth
0:00:50
Generative AI in Cybersecurity #cybersecurity #ai #generativeai
0:04:39
Generative AI's Potential Cyber Security Risks
0:02:34
Generative AI for Cyber Security
0:10:01
AI, Machine Learning, Deep Learning and Generative AI Explained
0:18:42
AWS re:Inforce 2024 - 5 ways generative AI can enhance cybersecurity (GAI324)
Комментарии