2024-06-17 –, Breakout 2
You have just finished mapping your cloud security controls to NIST CSF/ISO27001... and now have to deal with NIST AI RMF, MITRE ATLAS and ISO27053, because your organization is adopting AI/ML.
Do you really need to water this enormous garden of frameworks? Would it be possible to make a neat herbarium instead and reuse already existing mappings to demonstrate your compliance? Do all major cloud providers (AWS, Azure, GCP) even offer similar controls for MLSecOps?
In this talk I will explain how you can reuse existing control mappings for a multi-cloud environment to shorten the time you need to complete AI/ML compliance report and identify missing MLSecOps controls.
Natalia is a cybersecurity professional based in Toronto, Canada. She has over 15 years of experience in cryptography, identity and access management and cloud security. Within the past 3 years Natalia has been doing extensive research in AI security and MLSecOps as a part of her work at Google. She is passionate about open source and mentoring the new generation of cybersecurity specialists.