To help companies scale business operations with AI without having to worry about the technology’s underlying risks, cybersecurity provider Orca Security has rolled out an AI-SPM offering available through its flagship, SaaS-based cloud security platform.
Orca claims the new AI-SPM capabilities, including features such as AI bill of materials (BOM), sensitive data detection, and public access visibility, will help organizations securely access popular AI services including Amazon Sagemaker and Bedrock, Azure Open AI, and Vertex AI.
“Orca revealed through its 2024 State of Cloud Security research that 82% of AWS SageMaker users have exposed notebooks, which can often contain sensitive training data,” Orca said in a press statement. “This makes the cloud resources AI models rely upon a potentially lucrative target for attackers.”
Apart from the AI-SPM offering, Orca’s SaaS platform presently offers a suite of cloud security capabilities including cloud-native application protection (CNAP), cloud security posture management (CSPM), cloud workload protection (CWP), cloud infrastructure entitlement management (CIEM), and cloud detection and response, among others.
Works on existing SideScanning capabilities
According to Orca, the new AI-SPM offering is built on the company’s existing “side scanning” capabilities for cloud-based workloads. Orca’s side scanning is an agentless, cloud workload visibility offering that collects data from the workload’s runtime block storage to provide a virtual read-only view.
“With the introduction of AI-SPM, Orca is leveraging its patented agent-less SideScanning technology to provide the same visibility, risk insight, and deep data for AI models that it does for other cloud resources,” Orca said. “The tool also addresses use cases unique to AI security, including detecting sensitive data in training sets.”