Leaning in on ISO 5338, ISO 27090/27091, and the OWASP AI Exchange to Build Secure AI Systems
2Leaning in on ISO 5338, ISO 27090/27091, and the OWASP AI Exchange to Build Secure and Responsible AI Systems: Balancing Innovation and Ethical Boundaries | A Conversation with Rob van der Veer | Redefining CyberSecurity Podcast with Sean Martin
Guest: Rob van der Veer, Senior director at Software Improvement Group [@sig_eu]
On Linkedin | https://www.linkedin.com/in/robvanderveer/
On Twitter | https://twitter.com/robvanderveer
____________________________
Host: Sean Martin, Co-Founder at ITSPmagazine [@ITSPmagazine] and Host of Redefining CyberSecurity Podcast [@RedefiningCyber]
On ITSPmagazine | https://www.itspmagazine.com/itspmagazine-podcast-radio-hosts/sean-martin
____________________________
This Episode’s Sponsors
Imperva | https://itspm.ag/imperva277117988
Devo | https://itspm.ag/itspdvweb
___________________________
Episode Notes
In this episode of the Redefining Cybersecurity podcast, host Sean Martin welcomes Rob van der Veer to discuss the intersection of engineering AI systems and security. The conversation revolves around the potential risks and impacts of leveraging AI, particularly generative AI, on business growth and data security.
Rob, an expert in AI with extensive experience in the industry, shares insights on the advancements, challenges, and regulatory frameworks in the AI landscape. Rob highlights the importance of recognizing ethical and moral considerations when applying AI algorithms and emphasizes the need for governance, risk, and compliance roles, as well as security officers, to be involved in AI initiatives. He emphasizes the significance of maintaining ethical boundaries and complying with regulations, such as the European AI Act, to prevent potential harm to individuals and society.
Sean and Rob discuss the evolving nature of AI regulations, with governments setting boundaries to ensure responsible AI usage. Rob also mentions the OWASP AI Exchange, an open-source platform promoting collaboration and knowledge sharing among experts in AI security, and the need for alignment among various frameworks and standards.
The discussion also touches on the role of data scientists and the importance of collaboration with software engineers to ensure the development of secure, maintainable, and transferrable AI systems. Platform engineering is identified as the future of AI security and quality, enabling organizations to cover a wide range of requirements, including security, explainability, and unbiased decision-making.
Overall, this episode provides valuable insights into the complex landscape of AI engineering, security, and ethics, highlighting the need for multidisciplinary collaboration, adherence to regulations, and continuous improvement in AI practices.
Key Insights:
AI is influencing many aspects of business growth and data protection, but there are potential risks with this innovation that need thoughtful understanding and careful management.
Various disciplines, including governance, risk compliance, and security officers, need to be actively involved in AI initiatives to ensure ethical practices.
The future of AI quality and security lies in platform engineering, a collaborative approach that allows organizations to cover a wide range of requirements and ensure the development of secure, maintainable, and transferrable AI systems.
___________________________
Watch this and other videos on ITSPmagazine's YouTube Channel
📺 https://www.youtube.com/@itspmagazine
Be sure to share and subscribe!
___________________________
Resources
Inspiring LinkedIn post: https://www.linkedin.com/posts/robvanderveer_ai-aisecurity-activity-7139372087177068544-EUNg/
Member states and MEPs strike deal on EU AI Act after drawn-out, intense talks: https://www.euronews.com/my-europe/2023/12/08/eu-countries-and-meps-strike-deal-on-artificial-intelligence-act-after-drawn-out-intense-t
Artificial intelligence (European Council, Council of the EU): https://www.consilium.europa.eu/en/policies/artificial-intelligence/
Artificial intelligence act: Council and Parliament strike a deal on the first rules for AI in the world: https://www.consilium.europa.eu/en/press/press-releases/2023/12/09/artificial-intelligence-act-council-and-parliament-strike-a-deal-on-the-first-worldwide-rules-for-ai/
OpenCRE interactive content linking platform for uniting security standards: https://opencre.org
OWASP AI Exchange: https://owaspai.org
OpenCRE-chat the world's first security chatbot: https://www.opencre.org/chatbot
ISO/IEC 5338: Get to know the global standard on AI systems: https://www.softwareimprovementgroup.com/iso-5338-get-to-know-the-global-standard-on-ai-systems/
___________________________
To see and hear more Redefining CyberSecurity content on ITSPmagazine, visit:
https://www.itspmagazine.com/redefining-cybersecurity-podcast
Are you interested in sponsoring an ITSPmagazine Channel?
👉 https://www.itspmagazine.com/sponsor-the-itspmagazine-podcast-network