Filtrar por gênero

Software Engineering Institute (SEI) Podcast Series

Software Engineering Institute (SEI) Podcast Series

Members of Technical Staff at the Software Engineering Institute

The SEI Podcast Series presents conversations in software engineering, cybersecurity, and future technologies.

705 - Cybersecurity Metrics: Protecting Data and Understanding Threats
0:00 / 0:00
1x
  • 705 - Cybersecurity Metrics: Protecting Data and Understanding Threats

    One of the biggest challenges in collecting cybersecurity metrics is scoping down objectives and determining what kinds of data to gather. In this podcast from the Carnegie Mellon University Software Engineering Institute (SEI), Bill Nichols, who leads the SEI’s Software Engineering Measurements and Analysis Group, discusses the importance of cybersecurity measurement, what kinds of measurements are used in cybersecurity, and what those metrics can tell us about cyber systems.

    Fri, 11 Oct 2024 - 27min
  • 704 - 3 Key Elements for Designing Secure Systems

    To make secure software by design a reality, engineers must intentionally build security throughout the software development lifecycle. In this podcast from the Carnegie Mellon University Software Engineering Institute (SEI), Timothy A. Chick, technical manager of the Applied Systems Group in the SEI’s CERT Division, discusses building, designing, and operating secure systems.

    Wed, 02 Oct 2024 - 36min
  • 703 - Using Role-Playing Scenarios to Identify Bias in LLMs

    Harmful biases in large language models (LLMs) make AI less trustworthy and secure. Auditing for biases can help identify potential solutions and develop better guardrails to make AI safer. In this podcast from the Carnegie Mellon University Software Engineering Institute (SEI), Katie Robinson and Violet Turri, researchers in the SEI’s AI Division, discuss their recent work using role-playing game scenarios to identify biases in LLMs.

    Mon, 16 Sep 2024 - 45min
  • 702 - Best Practices and Lessons Learned in Standing Up an AISIRT

    In the wake of widespread adoption of artificial intelligence (AI) in critical infrastructure, education, government, and national security entities, adversaries are working to disrupt these systems and attack AI-enabled assets. With nearly four decades in vulnerability management, the Carnegie Mellon University Software Engineering Institute (SEI) recognized a need to create an entity that would identify, research, and identify mitigation strategies for AI vulnerabilities to protect national assets against traditional cybersecurity, adversarial machine learning, and joint cyber-AI attacks. In this SEI podcast, Lauren McIlvenny, director of threat analysis in the SEI’s CERT Division, discusses best practices and lessons learned in standing up an AI Security Incident Response Team (AISIRT).  

    Mon, 09 Sep 2024 - 38min
  • 701 - 3 API Security Risks (and How to Protect Against Them)

    The exposed and public nature of application programming interfaces (APIs) come with risks including the increased network attack surface. Zero trust principles are helpful for mitigating these risks and making APIs more secure. In this podcast from the Carnegie Mellon University Software Engineering Institute (SEI), McKinley Sconiers-Hasan, a solutions engineer in the SEI CERT Division, discusses three API risks and how to address them through the lens of zero trust.  

     

    Thu, 22 Aug 2024 - 19min
Mostrar mais episódios