Sysdig extends AI security to AWS AI services for safer tech

Sysdig, known for its expertise in real-time cloud security, has announced the extension of its AI Workload Security to Amazon Bedrock, Amazon SageMaker, and Amazon Q. This move is part of the company's ongoing effort to enhance the security of artificial intelligence (AI) workloads, which are increasingly seen as prime targets for attackers due to the sensitive training data they contain.

Sysdig's AI Workload Security, an extension of the cloud-native application protection platform (CNAPP), offers real-time identification of suspicious AI workload activity, improved visibility into environments, and vulnerability prioritisation powered by runtime insights. This is particularly significant given the increase in usage of AWS AI services, which claim over 10,000 organisational users worldwide.

Loris Degioanni, CTO and Founder of Sysdig, commented on the initiative, saying, “Everyone is racing to embed AI into their software, but doing so without the right understanding of AI risk and the proper security controls applied could be costly. Together with AWS, we're enabling mutual customers to securely capitalise on the efficiency and speed that AI unlocks.”

Generative AI workloads, despite their innovative potential, are not without security risks. The Sysdig Threat Research Team discovered that such workloads are 35% more likely to be publicly exposed. This heightened risk of exposure, coupled with a lack of visibility, can slow the pace of software development and increase the chances of vulnerable applications being shipped into production environments.

The cloud presents a different dynamic from traditional on-premises environments by being faster, more complex, and having a larger attack surface. This complexity is further amplified by AI, making robust security measures even more essential. Sysdig and AWS are working together to help customers rapidly and securely adopt AI technologies. While AWS focuses on streamlining the building and scaling of AI applications, Sysdig enhances security through real-time detections and deep runtime visibility to counter imminent threats.

With the extension of AI Workload Security to AWS AI services, Sysdig also ingests real-time signals from AWS CloudTrail logs, enabling swift responses to various security threats. These include reconnaissance activity, data tampering, and public exposure of AI applications. For instance, the system can detect attempts to discover and exploit AI services and acts to safeguard sensitive data and maintain the integrity of AI models.

Loris Degioanni further emphasised the importance of fast response times, stating, “As the creator of Falco, the open-source standard for cloud threat detection, Sysdig understands the importance of speed in attack response. By improving visibility into which applications are embedding AI clients to communicate with AI services, Sysdig allows teams to manage and control their AI usage – both legitimate and malicious.”

Sysdig's unified risk findings feature integrates real-time AI Workload Security, providing security teams with a consolidated view of all correlated risks and events. This streamlines the triage process and reduces response times, facilitating efficient prioritisation, investigation, and mitigation of active AI risks. Through these measures, Sysdig is helping companies ensure that innovation via AI can be achieved without jeopardising security.