Sunday, May 4, 2025

Security Boulevard

The Home of the Security Bloggers Network

Community Chats Webinars Library

Home
Security Creators Network
Webinars
Events
- Upcoming Events
- On-Demand Events
Sponsored Content
Chat
Library
Related Sites
Media Kit
About
Sponsor

Analytics
AppSec
CISO
Cloud
DevOps
GRC
Identity
Incident Response
IoT / ICS
Threats / Breaches
More
Humor

worst practices

Vulnerability management – we’re doing it wrong

Al Berg | August 21, 2022 | CSO, deep thoughts, online security, Vulnerabilities, worst practices

Security professionals (and the people who measure our performance like auditors and regulators) have traditionally taken a stance that “all serious vulnerabilities should be patched” ...

Al Berg's Paranoid Prose

Another killer woodpecker

Al Berg | April 24, 2021 | cloud computing, deep thoughts, online security, systemic risk, worst practices

Way back in 1977, a computer scientist from the University of Nebraska coined “Weinberg’s law:” If builders built buildings the way programmers wrote programs, then ...

Al Berg's Paranoid Prose

It’s official… SMS is not a security tool

Al Berg | March 16, 2021 | Authentication, online security, worst practices

Using SMS as a second factor for authentication has always been a bit iffy, due to the risk of “SIM swapping” attacks. However, many people ...

Al Berg's Paranoid Prose

Are passwords really the best we can do?

Al Berg | December 17, 2019 | Authentication, online security, worst practices

So by now, you have seen the news stories about the doofus hackers who are breaking into Ring cameras and scaring kids. And it turns ...

Al Berg's Paranoid Prose

Is Business Email Compromise a “cyber attack?”

Is Business Email Compromise a “cyber attack?”

Al Berg | October 14, 2019 | Awareness, online security, social engineering, worst practices

Just what constitutes a cyber attack? That’s the question facing a court in a case brought against insurer AIG. One of the firm’s clients was ...

Al Berg's Paranoid Prose

Bad biometrics: Samsung’s new S10 phone

Al Berg | March 14, 2019 | hacks, online security, Privacy, worst practices

When biometrics work properly, they can provide you with an easy to use security solution with a reasonable level of ...

Al Berg's Paranoid Prose

Techstrong TV

Click full-screen to enable volume control

Watch latest episodes and shows

Upcoming Webinars

Software Supply Chain Security: Navigating NIST, CRA, and FDA Regulations

Is DevEx the Same as DevSecOps?

Podcast

Listen to all of our podcasts

Press Releases

GoPlus's Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On

Subscribe to our Newsletters

Most Read on the Boulevard

F5 Extends Security Reach to Large Language Models

Homeland Secretary Noem Vows to Put CISA ‘Back to Focusing on its Core Mission’

Salt Security Embraces MCP to Improve Cybersecurity in the Age of AI

Report Exposes Soft Security Underbelly of Mobile Computing

Enhancing EHR Security: Best Practices for Protecting Patient Data

Top Data Breaches in April 2025 That Made The Headlines

JPMorgan Just Made SaaS Security Impossible to Ignore | Grip

Revived CryptoJS library is a crypto stealer in disguise

Where’s the SOAR Magic Quadrant?

Innovative Measures in Cybersecurity for 2025

Industry Spotlight

Cybersecurity Data Privacy Data Security Endpoint Featured Identity & Access Industry Spotlight Malware Network Security News Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight Threats & Breaches

Cybersecurity CEO Charged With Installing Malware on Hospital Computers

April 28, 2025 Jeffrey Burt | Apr 28 0

Cybersecurity Data Privacy Data Security Featured Identity & Access Industry Spotlight Malware Mobile Security Network Security News Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Social Engineering Spotlight Threat Intelligence

North Korean Group Creates Fake Crypto Firms in Job Complex Scam

April 25, 2025 Jeffrey Burt | Apr 25 0

Application Security Cloud Security Cyberlaw Cybersecurity Data Privacy Data Security DevOps Featured Governance, Risk & Compliance Humor Incident Response Industry Spotlight Most Read This Week Network Security News Popular Post Security Awareness Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight Threats & Breaches Vulnerabilities

200,000 Workers’ PII at Risk in WorkComposer S3 SNAFU

April 25, 2025 Richi Jennings | Apr 25 0

Top Stories

Cloud Security Cybersecurity Data Security Featured Governance, Risk & Compliance Identity & Access Mobile Security Network Security News Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Social Engineering Spotlight Threat Intelligence

Treasury Moves to Ban Huione Group for Laundering $4 Billion

May 2, 2025 Jeffrey Burt | 2 days ago 0

Cybersecurity Featured News RSAC Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight

Report Exposes Soft Security Underbelly of Mobile Computing

May 1, 2025 Michael Vizard | 3 days ago 0

AI and Machine Learning in Security AI and ML in Security Cybersecurity Featured News Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight

F5 Extends Security Reach to Large Language Models

April 30, 2025 Michael Vizard | 3 days ago 0

Download Free eBook

The Dangers of Open Source Software and Best Practices for Securing Code

Join the Community

Add your blog to Security Creators Network
Write for Security Boulevard
Bloggers Meetup and Awards
Ask a Question
Email: [email protected]

Useful Links

About
Media Kit
Sponsor Info
Copyright
TOS
DMCA Compliance Statement
Privacy Policy

Related Sites

Techstrong Group
Cloud Native Now
DevOps.com
Digital CxO
Techstrong Research
Techstrong TV
Techstrong.tv Podcast
DevOps Chat
DevOps Dozen
DevOps TV

Powered by Techstrong Group

Copyright © 2025 Techstrong Group Inc. All rights reserved.

Security in AI

Step 1 of 7

14%

How would you best describe your organization's current stage of securing the use of generative AI in your applications?(Required)

We don’t have or use generative AI in our applications

Nothing significant yet - We have or will have generative AI in our applications but haven’t yet researched or explored the possibility of securing it.

Starting - We have begun to work on securing generative AI in our applications.

Developing - We have started to implement some security measures for generative AI.

Average - We have some policies or tools in place.

Advanced - We have some enhanced security protocols specifically tailored for generative AI in our applications.

Very advanced - We have comprehensive, mature, and proactive security solutions for generative AI in our applications.

Have you implemented, or are you planning to implement, zero trust security for the AI your organization uses or develops?(Required)

Already implemented

Planning to implement

Considering or scoping to implement

Not considering zero trust for AI

Do not use zero trust at all

Don’t know

What are the three biggest challenges your organization faces when integrating generative AI into applications or workflows? (Select up to three)(Required)

Potential impacts on performance or scalability of the applications

Potential impacts on performance or scalability of the AI

Lack of expertise or experience

Security of prompts or responses

Compliance with standards and regulations

Access security

Intellectual property protection

Integration capabilities of current systems

Data security or privacy

Cost to implement

How does your organization secure proprietary information used in AI training, tuning, or retrieval-augmented generation (RAG)? (Select all that apply)(Required)

Encryption at rest

Encryption in transit

Data access control, monitoring

Data anonymization

Data/information isolation

Data masking/tokenization

Data governance policies

Zero trust / continuous authentication and authorization

No specific measures in place

Which of the following kinds of tools are you currently using to secure your organization’s use of generative AI? (select all that apply)(Required)

Native cloud service tools (AWS Guardrails, e.g.)

Third-party tools

Custom in-house tools

No specific tools

How valuable do you think it would it be to have a solution that classifies and quantifies risks associated with generative AI tools?(Required)

Extremely valuable

Very valuable

Somewhat valuable

Not valuable

What are, or do you think would be, the most important reasons for implementing generative AI security measures? (Select up to three)(Required)

Regulatory compliance

Protecting intellectual property

Mitigating potential data breaches

Maintaining customer trust

Competitive advantage

Improved risk management

Increased operational efficiency

Don’t know

Δ