Navigating AI in Cybersecurity: Insights from Sonya Moisset

Logo
Presented by

Mackenzie Jackson - Developer Advocate

About this talk

In this episode of The Security Repo, we are thrilled to welcome Sonya Moisset, a Senior Advocate at Snyk and a renowned expert in DevSecOps, cybersecurity, and AI. With a wealth of experience as a public speaker, mentor, and top contributor to the tech community, Sonya shares her deep insights into the evolving landscape of AI in cybersecurity. Join us as we dive into the pressing issues surrounding generative AI and large language models (LLMs), including the concept of shadow AI, the risks of using AI tools without proper oversight, and real-world examples of security breaches involving AI. Sonya discusses the importance of implementing robust security policies and fostering an open dialogue within organizations to mitigate these risks. We also explore fascinating topics such as prompt injection attacks, the role of AI in both offensive and defensive cybersecurity strategies, and the emerging frameworks guiding ethical AI use. Whether you're a security professional, a developer, or simply curious about the intersection of AI and cybersecurity, this episode offers valuable knowledge and practical advice. Tune in to learn how to navigate the complexities of AI in your organization and stay ahead in the fast-paced world of cybersecurity. Show Links Sonya Moisset social media links Linkedin: / sonyamoisset X (Twitter): https://x.com/SonyaMoisset Introduction: 0:00 What are the security risks with AI and LLMs: 1:10 Prompt Injection Car Dealership: 6:39 Prompt Injection: 8:46 Guardrails for AI: 16:00 Using AI for Red Teaming: 25:19 Regulations for AI security 32:16 Best and Worst: 34:10
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (28)
Subscribers (497)
Learn how software-driven organizations use GitGuardian to strengthen their overall security posture and comply with application security frameworks and standards. GitGuardian, founded in 2017, has become the leader in automated secrets detection and is now focused on providing a comprehensive code security platform. It's raised $56M from top investors, including co-founders of GitHub and Docker. Its policy engine helps security teams monitor and enforce rules across all their VCS, DevOps tools, and infrastructure-as-code configurations. GitGuardian offers Secrets Detection, Infra as Code Security, and Honeytoken capabilities all in one platform.