When leveraging AI in financial services, there are new technologies and security challenges to tackle in addition to the usual DevOps and scaling considerations.

As now exists several sources of information for AI security best practices, we are not left on our own. But how to practically apply them in your project is something not so well described.

In this talk, Rowan Baker and Vicente Herrera will explain how to start with a security guideline recommendation like the “Simple Governance Framework” from the FINOS AI Readiness Group, and apply it to a real project implemented with Helix and FluxCD.

They will show how to transform the recommendations into real actions and how specific controls or mitigations have been chosen and implemented in a practical way. Some of the approaches may be conventional but important, like those regarding supply chain security, others will be more AI specific and novel.

They will also show how the guidelines may not cover specific implementation, how to extend the coverage and contribute back so others benefit from the knowledge you have gained.