Register here for AWS re:Invent 2024, Dec 2-6, Las Vegas, NV

-------

Urmila Kukreja of Smartsheet and Nick Simha of AWS discuss leveraging Amazon Q’s Retrieval-Augmented Generation (RAG) solution to enhance productivity by enabling employees to quickly access relevant information within secure, integrated workflows like Slack, improving efficiency across the organization.

Topics Include:

• Introduction by Nick Simha, AWS.
• Overview of Amazon Q’s role in data analytics and Gen AI.
• Gen AI’s impact on productivity, ~30% improvement backed by Gartner study findings.
• General productivity improvement seen across various departments.
• Amazon Q’s developer code generation tool – rapid development
• Gen AI and LLMs’ challenges: security, privacy, and data relevance.
• Foundation models lack specific organizational knowledge by default.
• Empowering Gen AI to grant system access can cause issues
• Privacy concern: Sensitive data, like credit card info, can be central in data breaches
• Compliance is critical for organizational reputation and data integrity.
• Data integration techniques: prompt engineering, RAG, fine-tuning, custom training.
• RAG (Retrieval Augmented Generation) balances cost and accuracy effectively.
• Implementing RAG requires complex, resource-heavy integration steps.
• Amazon Q simplifies RAG integration with "RAG as a service."
• Amazon Q’s Gen AI stack overview, including Bedrock and model flexibility.
• Amazon Q connects to 40+ applications, including Salesforce and ServiceNow.
• Amazon Q respects existing security rules and data privacy constraints.
• Plugin functionality enables backend actions directly from Amazon Q.
• All configurations and permissions can be managed by administrators.
• Urmila Kukreja from Smartsheet explains real-world Q implementation.
• Smartsheet’s Ask Us Engineering Slack channel: origin of Q integration.
• Q integration in Slack simplifies data access and user workflow.
• "Ask Me" Slack bot lets employees query databases instantly.
• Adoption across departments is high due to integrated workflow.
• Future plans include adding data sources and personalized response features.
• Session wrap up

Participants:

• Urmila Kukreja – Director of Product Management, Smartsheet
• Nick Simha - Solutions Architecture Leader - Data, Analytics, GenAI and Emerging ISVs, AWS

See how Amazon Web Services gives you the freedom to migrate, innovate, and scale your software company at https://aws.amazon/isv/

Register here for AWS re:Invent 2024, Dec 2-6, Las Vegas, NV

-------

Harold Rivas – Chief Information Security Officer at Trellix, discusses the role of generative AI in cybersecurity, focusing on Trellix's adoption of AI for threat detection and model governance, while emphasizing the importance of privacy, responsible innovation, and cross-functional collaboration.

Topics Include:

• Introduction to generative AI and its impact on cybersecurity
• Harold’s background in financial services and cybersecurity roles
• Trellix’s focus on product feedback through the Customer Zero Program
• Overview of machine learning's role in anomaly detection at Trellix
• Development of guided investigations to assist security operations teams
• Generative AI's growing importance in cybersecurity at Trellix
• Launch of Trellix WISE at the RSA Conference in 2024
• Addressing the overload of security alerts with AI models
• Integration of various AI models like Mistral and Anthropic
• Reducing anomalies and workload for security operations teams
• Importance of privacy in generative AI adoption and data governance
• Challenges with GDPR and CPRA regulations in AI implementation
• Focus on privacy frameworks like the NIST Privacy Framework
• Need for multi-stakeholder involvement in AI governance
• Discussion on model governance inspired by financial services practices
• Importance of inventorying and testing AI models for security
• Benefits of an AI Center of Excellence (AICOE) within organizations
• Model governance in generative AI for regulatory and business outcomes
• The impact of AI on labor, jobs, and decision-making processes
• Addressing cyber risk and threat modeling in AI environments
• The double-edged sword of AI in offensive and defensive cybersecurity
• MITRE Atlas framework's role in AI-driven cybersecurity strategies
• Potential negative consequences. Auto dealership hacked – Chevy Tahoe sold for $1
• Importance of vulnerability management and developer training
• Evolution of AI security tools and responsible use of generative AI
• Collaboration, governance, and agility in AI adoption across organizations
• Q&A 1: Outcomes and responsibilities an generative AI COE should have?
• Q&A 2: Model governance and financial implications
• Q&A 3: CISO response to model development, compliance and learning with customer data
• Q&A 4: Thoughts and suggestions for rating systems for models
• Q&A 5: Selecting and evaluating models
• Q&A 6: Advice and experience for model deployment and technical controls
• Q&A 7: Human reviewing AI responses to ensure accuracy
• Q&A 8: Will AI help avoid major outages in the future?
• Q&A 9: How to test and see maturity of models?
• Session wrap up

Participants:

· Harold Rivas – CISO at Trellix

See how Amazon Web Services gives you the freedom to migrate, innovate, and scale your software company at https://aws.amazon/isv/

Register here for AWS re:Invent 2024, Dec 2-6, Las Vegas, NV

-------

Executive leaders from Arctic Wolf, Docker and Illumio share insights on fostering a strong security culture, balancing innovation with security, and addressing challenges in data protection and AI model development.

Topics Include:

• Overview of security culture in different company teams
• Importance of guidelines and secure IT infrastructure for AI models
• Challenges of accessing customer data while maintaining security
• Need for anonymization in early AI model development
• Docker's open-source ecosystem and security integration
• Dogfooding own products to ensure product reliability and trustworthiness
• Illumio’s high customer trust and responsibility for strong security practices
• Balancing security awareness with development speed at Illumio
• Gamifying security training to increase awareness
• Interlocking with customers to enhance security understanding for developers
• Embedding security into the development process from the start
• Illumio's approach to security in agile, cloud-native development
• Adapting customer success strategies for evolving security needs
• Rise of non-developers using AI in enterprises
• Educating business leaders on security best practices
• Scaling customer enablement and education through community engagement
• Challenges of placing security responsibilities in the developer workflow
• Arctic Wolf’s AI strategy for secure development
• Use of anonymized data in secure AI model training
• Generative AI’s potential to augment human creativity and efficiency
• Panelists' views on private AI and segmented model development
• Measuring security culture progress with gamification and development metrics
• Addressing human factors in cybersecurity and social engineering threats
• Emphasizing resiliency and containment in preventing widespread cyberattacks.
• 
  

Participants:

• Dean Teffer – Vice President of Artificial Intelligence, Arctic Wolf
• Dixie Dunn – VP of Customer Success, Docker
• Mario Espinoza – Chief Product Officer, Illumio
• Brian Shadpour – General Manager, AWS

See how Amazon Web Services gives you the freedom to migrate, innovate, and scale your software company at https://aws.amazon/isv/