Guest event: Securing AI: From Development to AI Ops

A guest event next week from one of our partner communities:

RSVP here: https://www.meetup.com/devseccon-netherlands/events/306681141/

Securing AI - From Development to AI Ops

Join DevSecCon Netherland for an exciting Meetup exploring Secure AI Adoption, hosted at Mollie's offices in Central Amsterdam with two fantastic talks!

Talk 1: Security in AI-Powered Development
Speaker: Alessandro Vozza, Technical Specialist Application Innovation & AI @Microsoft
In the rapidly evolving landscape of AI-powered development, establishing trust and ensuring security are paramount. This talk will delve into the integration of Agentic AI and Copilot technologies, highlighting their transformative potential and the security measures necessary to safeguard their implementation. Attendees will gain insights into the latest advancements in AI, practical strategies for secure deployment, and the future of AI-driven development. Join us to explore how Agentic AI and Copilot can revolutionize development while maintaining robust security standards.

Talk 2: Understanding LLM Risks in Infrastructure: From Fundamentals to Real-World Scenarios
Speaker: Julien Salomon, Founding Engineer @Anyshift
Large Language Models (LLMs) are transforming infrastructure management, but they can also introduce significant security risks. This talk covers the basics of LLMs applied to infrastructure-as-code, showcases real-world examples of potential vulnerabilities, and offers practical strategies to mitigate these risks in DevSecOps environments.

• LLM Fundamentals: I'll explain how LLMs work, how they are trained, and their probabilistic approach. I'll illustrate difference through Python & Terraform code generation comparisons.
• Issues with IaC Generation such as context limitations: AI might produce suboptimal configurations due to missing context, leading to inconsistencies or dependency issues, and security Risks: Models trained on public data may propagate vulnerabilities - e.g., open ports- and bad practices.
• Future Potential - Contextual AI: AI’s full potential will be realized when it integrates comprehensive environmental context, including configurations, service interdependencies, and security policies.

Join for the talks, stay for the 🍻 & 🍕