AI035-WS: How AI Automates ISO 27001 Compliance and Increases Developer Productivity

Web Seminar: Revolutionary Software Security

Participants learn how large language models can be used to support developers in implementing security policies such as ISO 27001. The course presents automated analysis of dev tickets to perform threat modeling and generate checklists with references to relevant standards, which can be directly integrated into the development process.

Unfortunately there are currently no available appointments.
Would you like to request an appointment? Then click on 'No matching appointment?'

Request prefered appointment period:

* All fields marked with an asterisk are mandatory fields.

Agenda:

Live demos of various use cases:

  • Scanning and Threat Modeling:
    • Explanation of the method by which LLMs analyze the content of development tickets
    • Automated detection of security requirements such as confidentiality, integrity, and availability
    • Generation of a detailed threat modeling report

  • Checklist Generation:
    • Creation of a dynamic checklist based on the content of the ticket
    • References to relevant ISO 27001 guidelines
    • Integration of the checklist directly into the development ticket

  • Categorization According to the AI Act:
    • Automated categorization of AI features in accordance with the requirements of the AI Act
    • Integration into the checklist and threat modeling system

  • Peer Review Support:
    • Automatic check of whether the checklist was fulfilled during the peer review
    • Pre-filling of a form to document the review
    • Documentation enhancement by the reviewer

  • Integration into GRC Tools:
    • Demonstration of how the generated data and reports can be integrated into governance, risk, and compliance (GRC) tools
    • Benefits of automated documentation and traceability

  • Q&A session

Objectives:

By automating security reviews and supporting developers in complying with ISO 27001 guidelines through the use of LLMs, efficiency and security in software development can be significantly enhanced. You will gain practical insights and guidance on how to implement this innovative solution.

Benefits for participants:
  • Saving time and resources through the automation of security checks and documentation
  • Improved compliance with ISO 27001 guidelines
  • Increased efficiency and accuracy in the development process
  • Deeper understanding of how to integrate LLMs into existing development and security workflows

Target audience:

  • Decision-makers
  • Users
  • Software developers / DevOps
  • IT professionals
  • GRC officers

Prerequisites:

Interest in Artificial Intelligence (AI)

Description:

In modern software development, developers face the challenge of implementing extensive security policies such as ISO 27001 while maintaining efficient development workflows. This web seminar presents innovative solutions that leverage Large Language Models (LLMs) to support developers in complying with these policies by automating repetitive and time-consuming tasks.

We demonstrate how LLMs can be used to scan development tickets (e.g., in Jira) in the background to automatically perform threat modeling and generate a checklist with references to the relevant policies. This checklist is then attached to the ticket to assist developers in their work.
check-icon

Guaranteed implementation:

from 2 Attendees

Booking information

Price:

0,00 € plus VAT.

(including lunch & drinks)

Authorized training partner

NetApp Partner Authorized Learning
Commvault Training Partner
CQI | IRCA Approved Training Partner
Veeam Authorized Education Center
Acronis Authorized Training Center
AWS Partner Select Tier Training
ISACA Accredited Partner
iSAQB
CompTIA Authorized Partner
EC-Council Accredited Training Center

Memberships

Allianz für Cyber-Sicherheit
TeleTrust Pioneers in IT security
Bundesverband der IT-Sachverständigen und Gutachter e.V.
Bundesverband mittelständische Wirtschaft (BVMW)
Allianz für Sicherheit in der Wirtschaft
NIK - Netzwerk der Digitalwirtschaft
BVSW
Bayern Innovativ
KH-iT
CAST
IHK Nürnberg für Mittelfranken
eato e.V.
Sicherheitsnetzwerk München e.V.