Get in Touch

Course Outline

Artificial Intelligence Risk Environment

  • Distinguishing characteristics of AI security: inherent non-determinism, opaque decision-making processes, and the expansion of the attack surface through prompt interfaces
  • Classification of threats: categorizing risks across training, inference, and supply chain phases
  • Adversary profiling: identifying potential threat actors and their motivations targeting AI infrastructure

NIST and OWASP Frameworks for Large Language Models

  • Prompt injection methodologies: analyzing direct and indirect exploitation vectors
  • Vulnerabilities in output processing: mitigating insecure data handling and cross-plugin request forgery
  • Data integrity risks: addressing training data contamination and supply chain compromises
  • Service availability and confidentiality: preventing model denial of service, protecting sensitive data, and limiting excessive system agency
  • Practical assessment: conducting controlled tests against designated applications to validate each vulnerability category

Adversarial Testing and Red Team Operations

  • Injection technique taxonomy: evaluating direct, indirect, multi-turn, and multi-modal attack strategies
  • Automated threat discovery: leveraging tools such as Giskard, Garak, and custom fuzzing utilities for systematic testing
  • Jailbreak assessment: classifying evasion attempts and evaluating defensive postures
  • Operationalizing red teams: developing harnesses for continuous security validation of LLM deployments

Threat Vectors Against Model Architecture

  • Model extraction attacks: reconstructing model weights and functionality through systematic API queries
  • Membership inference risks: determining whether specific records were included in the training dataset
  • Adversarial perturbation techniques: manipulating inputs to deceive classifiers and embedding systems
  • Data contamination: introducing corrupt data to establish backdoors or degrade system performance

Input Validation and Output Management

  • Advanced input sanitization: extending beyond conventional web application security controls
  • Output mitigation strategies: filtering for toxicity, personally identifiable information (PII) exposure, and unauthorized code execution via hallucinations
  • Implementation of guardrail infrastructure: utilizing platforms such as NeMo and Guardrails AI alongside custom policy enforcement
  • Enforcement of structured outputs: establishing strict data schemas as a critical security boundary

AI Supply Chain Integrity

  • Model provenance verification: ensuring the authenticity and integrity of foundational models
  • Dependency management: scanning ML frameworks and model artifacts for known vulnerabilities
  • Secure deployment practices: implementing sandboxing, network isolation, and least-privilege access protocols
  • Third-party model vetting: screening fine-tuned and community-sourced models for embedded malicious code

AI System Operational Security

  • Access management: securing model endpoints, vector databases, and agent tooling
  • Audit and monitoring: maintaining comprehensive logs for all model interactions and automated decisions
  • Incident response protocols: addressing AI-specific breaches where the model logic is compromised
  • Continuous integration security: embedding AI-focused testing within ML development pipelines

Establishing an AI Security Program

  • Maturity assessment: defining a roadmap for AI security capabilities aligned with organizational needs
  • Program integration: incorporating AI controls into existing application security and cloud infrastructure frameworks
  • Regulatory compliance: navigating governance structures and emerging standards for AI systems
  • Policy development: creating and maintaining an organizational playbook for AI risk management, for government and private sector stakeholders alike

Requirements

* Demonstrated capability in the operational deployment of machine learning models and large language model applications. * Competence in core security principles, including identity management, access control mechanisms, and risk assessment methodologies. * Proficiency in Python programming to facilitate adversarial validation and testing procedures. **Target Participants** * Security professionals transitioning to address emerging threats within artificial intelligence and machine learning ecosystems. * Data science personnel tasked with ensuring the integrity and resilience of predictive systems. * Ethical hacking specialists integrating AI-driven technologies into their evaluation frameworks for government operations.
 14 Hours

Number of participants


Price per participant

Upcoming Courses

Related Categories