Five strategies for mitigating LLM risks in cybersecurity apps – SC Media
Today’s columnist, Aqsa Taylor of Gutsy, offers five strategies for mitigating LLM risks. (Adobe Stock)
While most CISOs and CIOs have created AI policies, it’s become clear that more extensive due diligence, oversight, and governance are required for the use of AI in a cybersecurity context. According to Deloitte’s annual cyberthreat report, 66% of organizations suffered ransomware attacks. There was also a 400% increase in IoT malware attacks. And in 2023 91% of organizations had to remediate a supply chain attack affecting their code or systems they used.
That’s because the long-standing cybersecurity practices that worked in the past, haven’t caught up to the capabilities and threats presented by large language models (LLMs). These LLMs trained on vast quantities of data can make both security operations teams, and the threats they’re trying to mitigate, smarter. Because LLMs are different from other security tools, we need to adopt a different set of approaches to mitigate their risks. Some involve new security technologies. Others are tried-and-true tactics modified for LLMs. These include:
LLMs have introduced a greater risk of the unexpected, and so, we should closely monitor their integration, usage and maintenance protocols. Once the CISO has been satisfied that an LLM is safe enough and effective, they can proceed with a gradual and methodical deployment. For best result, deploy the LLM initially for less critical and complex tasks and slowly introduce it into the most cognitively challenging workflows and processes that call for good judgment by humans.
Aqsa Taylor, director of product management, Gutsy
Steve Zurier
Incident raises fears that U.S. adversaries could steal sensitive source code.
Paul Wagenseil
To properly and safely use artificial intelligence, robust identity and access management solutions must be implemented, say more than a hundred CISOs and CTOs in a recent survey.
Sponsored by Vectra AI
VectraAI shares how to see and stop Copilot-based attacks dead in their tracks.
By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.
Copyright © 2024 CyberRisk Alliance, LLC All Rights Reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorization.
Your use of this website constitutes acceptance of CyberRisk Alliance Privacy Policy and Terms & Conditions.
This article was autogenerated from a news feed from CDO TIMES selected high quality news and research sources. There was no editorial review conducted beyond that by CDO TIMES staff. Need help with any of the topics in our articles? Schedule your free CDO TIMES Tech Navigator call today to stay ahead of the curve and gain insider advantages to propel your business!
