Secure-by-Design AI: Protecting MLOps in the Microsoft Cloud with Martin Dimovski [MVP-MCT]

Secure-by-Design AI: Protecting MLOps in the Microsoft Cloud with Martin Dimovski [MVP-MCT]

In this episode of the m365.fm podcast, Mirko Peters sits down with Microsoft MVP, MCT, cloud security expert, and community leader Martin Dimovski to explore one of the most important topics in modern enterprise IT: securing AI workloads and MLOps environments inside the Microsoft Cloud. Together, they dive deep into secure-by-design architecture, AI security risks, DevSecOps, Prompt Injection attacks, identity protection, Microsoft Defender, GitHub Advanced Security, and the future of AI-driven cyber threats. Martin shares his personal journey from IT support engineer into cloud security and AI security architecture, explaining how years of experience in infrastructure, Azure, DevOps, and Microsoft technologies ultimately pushed him toward cybersecurity and AI governance. The discussion highlights why AI security is no longer optional and why organizations that move too fast without proper security foundations could face major problems in the coming years.

WHY AI SECURITY MATTERS NOW MORE THAN EVER

One of the strongest themes throughout this episode is the speed at which organizations are deploying AI systems without fully understanding the security implications behind them. Martin explains that many companies are currently:
  • Deploying AI solutions rapidly
  • Experimenting with LLM integrations
  • Building AI agents
  • Creating cloud-native AI workloads
  • Using open-source AI models
  • Integrating APIs into production environments
But at the same time, organizations often forget the security fundamentals that should protect these environments. The conversation explores how AI introduces completely new attack surfaces while simultaneously amplifying existing security problems.

WHAT “SECURE-BY-DESIGN” REALLY MEANS

A major focus of the episode is understanding the concept of secure-by-design architecture. Martin explains that security should never be added after development is complete. Instead, security conversations must begin at the very first design phase of any application or AI project. The discussion covers:
  • Threat modeling
  • Architectural reviews
  • Identity security
  • Authentication planning
  • Secure pipelines
  • Infrastructure protection
  • Secure APIs
  • Data governance
Martin shares why collaboration between developers, architects, DevOps engineers, and security teams is absolutely essential for building resilient AI systems. One of the key takeaways:
Security teams should not become blockers for innovation — they should become partners in building secure systems.

UNDERSTANDING MLOPS & DEVSECOPS

For listeners newer to AI infrastructure topics, Martin breaks down the differences between:
  • DevOps
  • DevSecOps
  • MLOps
  • Secure AI pipelines
The episode explains how machine learning operations combine infrastructure, automation, data engineering, model deployment, and monitoring into one continuous operational process. Martin also highlights why traditional security approaches are no longer enough once organizations start integrating:
  • Large Language Models
  • AI agents
  • Cloud AI services
  • AI APIs
  • AI orchestration pipelines
The discussion shows how modern security must now cover not only infrastructure and applications, but also models, prompts, training data, inference pipelines, and AI-generated outputs.

THE REAL DANGER OF PROMPT INJECTION

One of the most fascinating parts of the episode is Martin’s explanation of Prompt Injection attacks. Using simple real-world analogies, Martin explains how attackers manipulate Large Language Models by overriding or bypassing original system instructions. The conversation explores:
  • Direct Prompt Injection
  • Indirect Prompt Injection
  • AI manipulation
  • LLM instruction abuse
  • Malicious prompts
  • Unsafe AI agents
  • Context hijacking
  • Data extraction risks
Martin explains why prompt injection is becoming one of the most discussed attack vectors in AI security today and why organizations need to start thinking about AI trust boundaries immediately.

THE HIDDEN RISK OF OPEN-SOURCE MODELS

Another major topic is the increasing use of publicly available AI models. Martin shares concerns around:
  • Downloading unverified models
  • Compromised Hugging Face repositories
  • Malicious AI packages
  • Unsafe dependencies
  • Supply-chain attacks
  • API key exposure
  • Secret leakage
  • Public model poisoning
The discussion highlights how organizations may unknowingly introduce compromised models directly into production environments. This section serves as a major warning for companies rushing into AI adoption without proper governance and validation processes.

WHY IDENTITY SECURITY IS EVERYTHING

Identity and access management become another core theme throughout the episode. Martin strongly emphasizes the importance of:
  • Microsoft Entra ID
  • Privileged Identity Management
  • Just-In-Time access
  • Least privilege
  • Identity governance
  • Access reviews
  • Role separation
  • Conditional Access
One of the strongest lessons from the conversation is that attackers often do not need to break systems — they simply abuse existing permissions and weak access configurations. Martin explains why organizations should avoid giving permanent privileged access and instead embrace short-lived administrative permissions wherever possible.

MICROSOFT DEFENDER & AI SECURITY

The episode also dives deeply into the Microsoft security ecosystem and how Microsoft Defender is evolving to protect AI workloads. Martin discusses:
  • Microsoft Defender for Cloud
  • Defender XDR
  • AI workload monitoring
  • Real-time scanning
  • Azure AI Foundry protection
  • Threat visibility
  • Security telemetry
  • Cloud-native protection
According to Martin, Microsoft Defender is becoming one of the most powerful unified security platforms for organizations heavily invested in Microsoft technologies.

Become a supporter of this podcast: https://www.spreaker.com/podcast/m365-fm-modern-work-security-and-productivity-with-microsoft-365--6704921/support.

Det här avsnittet är hämtat från ett öppet RSS-flöde och publiceras inte av Podme. Det kan innehålla reklam.

Avsnitt(706)

Your AI Agents Are Orphaned- The Structural Shift to Agent ID

Your AI Agents Are Orphaned- The Structural Shift to Agent ID

Artificial intelligence is changing enterprise identity faster than most organizations realize. Every week, new AI agents are being deployed across Microsoft 365 tenants, accessing SharePoint, Microso...

11 Juli 1h 4min

The Architecture of Agility: Bicep at Scale

The Architecture of Agility: Bicep at Scale

Modern cloud platforms don't fail because Azure isn't powerful enough—they fail because governance, automation, and developer experience weren't designed to scale together. In this episode of the M365...

11 Juli 1h 25min

Designing the Future. AI, UX, and the Next Generation of Microsoft Power Platform with Tchesco Ayih [MVP-MCT]

Designing the Future. AI, UX, and the Next Generation of Microsoft Power Platform with Tchesco Ayih [MVP-MCT]

In this episode of the M365 Podcast, Mirko Peters sits down with Tchesco Ayih, Microsoft MVP, Microsoft Certified Trainer (MCT), international speaker, mentor, and Power Platform expert. Tchesco share...

10 Juli 50min

Azure Bicep Fundamentals for Real Projects

Azure Bicep Fundamentals for Real Projects

Learning Azure Bicep is easy. Building infrastructure that survives real-world enterprise environments is something entirely different. In this episode of the M365 FM Podcast, host Mirko Peters explor...

10 Juli 1h 17min

Beyond Prompt a Page: Building Enterprise-Ready AI Experiences in Power Apps with Sara Lagerquist [MVP]

Beyond Prompt a Page: Building Enterprise-Ready AI Experiences in Power Apps with Sara Lagerquist [MVP]

Artificial Intelligence is changing how organizations build business applications, but moving beyond simple demos requires much more than adding a chatbot or generating code with AI. In this episode o...

9 Juli 45min

ARM Templates Were a Mistake: Lessons from the Bicep Shift

ARM Templates Were a Mistake: Lessons from the Bicep Shift

Infrastructure as Code transformed cloud computing by replacing manual portal clicks with version-controlled, repeatable deployments. But while Azure Resource Manager (ARM) templates represented a maj...

9 Juli 1h 19min

Can Google Sheets Beat Excel: Microsoft MVP David Benaim Settles the Debate

Can Google Sheets Beat Excel: Microsoft MVP David Benaim Settles the Debate

For decades, Microsoft Excel has been the undisputed king of spreadsheets. It powers everything from personal budgets to enterprise reporting, financial modeling, and business intelligence. But Google...

8 Juli 52min

LinkedIn + Dynamics 365: The Architecture of Modern Selling

LinkedIn + Dynamics 365: The Architecture of Modern Selling

Modern B2B sales is undergoing a fundamental transformation. For years, organizations have treated LinkedIn and Dynamics 365 as separate systems. One platform managed relationships and professional ne...

8 Juli 1h 14min

Populärt inom Politik & nyheter

svenska-fall
tv4-nyheterna-story
p3-krim
aftonbladet-krim
flashback-forever
aftonbladet-daily
rss-krimstad
motiv
de-fyras-gang
spar
rss-sanning-konsekvens
rss-vad-fan-hande
mannen-utan-spar
rss-aftonbladet-krim
rss-expressen-dok
kungligt
olyckan-inifran
rss-krimreportrarna
grans
rss-flodet