Join us for our Quarterly Google Cloud Security User Group in our office in Google New York office (Pier 57)! This event is designed for Google Cloud customers and security enthusiasts eager to deepen their knowledge about Cyber Security Challenges along with Google Cloud Security products. Our theme for this quarter is "Securing AI and APIs" packed full of excellent in-depth content from our presenters.

Here's our agenda:

0930 - Check In

1000 - 1015 - Intro and Chapter Updates (15 mins) (Kris Keyser, Sam Jean-Baptiste, Matthew Bein, and Michael Vaillancourt)

1015 - 1100 - Mandiant Consulting and Intel - Securing AI Innovation: A Proactive Approach (60 mins) (Brice Daniels and Team)

The increasing deployment of Large Language Models (LLMs) and agentic solutions introduces complex security challenges, often due to insufficient integrated governance, proactive threat modeling, dedicated red teaming, and AI-specific detection. Securing this evolving landscape requires foresight and understanding AI's unique attack surface. This talk provides practical insights from a year of securing and attacking AI deployments, revealing common security missteps and critical vulnerabilities in production AI systems. We emphasize proactive measures like AI-specific threat modeling and targeted red team exercises, plus robust governance and response frameworks. Designed for executive leadership and technical professionals, this session offers actionable guidance to navigate AI security complexities and foster resilient AI adoption.

1100 - 1200 - Bridging the AI Gap (45 mins) (John Murray)

"Bridging the AI Reality Gap" is a presentation for investors that aims to cut through the hype surrounding AI in cybersecurity. It focuses on the significant difference between impressive AI demos and reliable, production-grade AI security products.

1200 - 1300 - Lunch (60 mins)

1300 - 1345 - Architecting Defenses for OWASP API & LLM Risks (45 mins) (Matt Hartmann)

Bernadette Carson from the Google Cloud Apigee Customer Engineering team will lead a technical deep dive on securing AI and API services on Google Cloud. This session moves beyond the "what" of the OWASP Top 10 for APIs and LLMs to focus on the "how," covering specific configurations and integration patterns. The presentation will explore the AI Gateway Pattern for centralized policy enforcement, ML-Powered Anomaly Detection using Advanced API Security to find shadow APIs and abuse, and Prompt Injection Countermeasures with Model Armor policies to protect backend models like Vertex AI, Gemini, or other 3rd party models.

1345 - 1400 - Closing (15 mins) (Kris Keyser, Sam Jean-Baptiste, Matthew Bein, and Michael Vaillancourt)

Don't miss this opportunity to stay ahead in the fast-evolving field of cyber security! Join your peers in tackling the challenges of securing AI and APIs. "Join" the fun and connect, learn, and grow with us in a community that supports your professional journey.