Adaptive Shield unveils new AI security features at RSA Conference

Adaptive Shield has introduced new SaaS Security Posture Management (SSPM) detection and response capabilities tailored for AI-driven applications.

The development aims to help enterprises manage risks associated with the rising use of generative AI technologies. The first demonstration of these capabilities took place at the RSA Conference 2024 in San Francisco.

The rapid integration of AI applications such as ChatGPT, Google Gimni, GitHub Copilot, Salesforce Einstein, and Microsoft 365 Copilot into the workforce has amplified efficiency. A report from PwC highlights that more than half of surveyed companies (54%) have adopted generative AI in some capacity.

While generative AI enhances automation and productivity, it simultaneously introduces risks such as data leakage, expanded attack surfaces, new exploitation areas, and privacy concerns. Compliance with governmental regulations also presents new challenges. Maor Bin, CEO and co-founder of Adaptive Shield, remarked, "The GenAI revolution requires new security strategies and organizations recognize the need to make it a priority. Some organizations are working to ban GenAI because of their unfamiliarity with the risks. Rather than attempting to block this development, they should invest in security, as it’s just a matter of time until the technology becomes ubiquitous."

To address these security concerns, Adaptive Shield has launched a product suite within its SSPM platform specifically for Chief AI Officers and security teams. This suite includes several key features:

Security Posture for AI Apps: This component allows organizations to scrutinise the security posture of any AI application within their SaaS stack, identifying and addressing application configuration drifts. A security score is provided for each application, helping security teams pinpoint those with heightened risk levels. Detailed security checks can be filtered by domain, severity, or compliance framework, complete with step-by-step remediation guidance integrated with any ticketing system or SIEM/SOAR.

AI Configurations: This feature enables the control of AI-related security settings within SaaS applications to prevent data leakage or exposure. It includes identifying users with excessive access and managing permissions related to GenAI features.

Discovery and Management of AI Shadow Apps: Organizations can identify AI Shadow Apps, including potentially malicious ones, and automatically revoke access based on assessed risk levels.

Management of Third-Party Longtail AI-Sanctioned Apps: This allows for the oversight of interconnected GenAI applications and the management of the risks they pose to SaaS hubs, including reviewing their permission scopes.

Secure Homegrown Applications: This feature focuses on protecting homegrown GenAI-driven applications by restricting access and ensuring secure configurations.

Data Management to Maintain Data Silos: Recognising that AI can analyse and correlate information from multiple sources more comprehensively than traditional methods, Adaptive Shield's policies govern security controls to prevent data leakage.

The platform supports over 150 out-of-the-box SaaS app integrations, including leading business applications and custom apps, making it a versatile tool for enterprises looking to secure their SaaS ecosystems.