Source URL: https://www.sdxcentral.com/news/cloud-security-alliance-partners-with-whistic-to-enhance-ai-security-practices/
Source: SDx Central
Title: Cloud Security Alliance partners with Whistic to enhance AI security practices
Feedly Summary: Cloud Security Alliance partners with Whistic to enhance AI security practices
AI Summary and Description: Yes
Summary: The partnership between the Cloud Security Alliance (CSA) and Whistic focuses on promoting secure practices for generative artificial intelligence (AI). This initiative aims to establish industry standards and enhance vendor security assessments, reinforcing the trust necessary for AI technologies in cloud and SaaS environments.
Detailed Description: The strategic alliance between the CSA and Whistic highlights a clear commitment to ensuring the responsible development and management of AI technologies. This collaboration has several implications for security professionals, particularly in the realms of cloud computing and AI security.
* Key Points:
– **Risk Evaluation and Controls**: The partnership aims to evaluate risks associated with generative AI and define necessary controls, showcasing the growing focus on security practices in AI development.
– **AI Safety Initiative**: Whistic will support the CSA’s AI Safety Initiative, which emphasizes the importance of safe AI practices amidst increasing adoption in cloud services.
– **AI Extension to STAR Certification**: The initiative will include developing an extension of the Security, Trust, Assurance, and Risk (STAR) certification, which will incorporate specific AI-related measures.
– **Free Trial for CSA Members**: CSA members will benefit from a three-month free trial of Whistic, allowing them to assess vendor security using CSA’s predefined frameworks.
– **Whistic Trust Catalog**: Participants will have access to a catalog of vendor security profiles, facilitating enhanced due diligence during vendor assessments.
– **Automation of Security Responses**: The collaboration aims to streamline the process of managing vendor security documentation through automated systems.
– **Educational Webinar**: A webinar will be conducted to discuss innovations and transformations in third-party risk management due to AI technologies.
These developments highlight a pivotal shift towards integrating AI safety into compliance and security frameworks, underlining the necessity for organizations to adapt to new challenges posed by advanced technologies in vendor management and operational risk assessments. This is essential for professionals focusing on AI, cloud, and infrastructure security, as they will need to align their strategies with these emerging standards and practices.