Why Continuous Training Must Come Before


            The AI-driven SDLC


            By Mike Burch, Director of Application Security, Security Journey



            Despite the hype, generative AI is unlikely to transform the world. But there are sectors where it could
            significantly disrupt the status quo. One of these is software development. Yet the time savings and
            productivity benefits of using tools like ChatGPT start to erode if what they’re producing is full of bugs. At
            best, such inadvertent errors will require extra time for developer teams to fix. At worst, they might creep
            into production.

            If organizations want to take advantage of AI to optimize the software development lifecycle (SDLC), they
            must first give their teams suitable training to manage the risk of something going wrong.



            One step forward, two steps back

            Every step forward we take with AI, the bad guys hit back. While generative AI and large language models
            (LLMs) could be a productivity boon for stretched developer teams, the technology has also been seized
            on by those with nefarious intent. Tools like FraudGPT and WormGPT are already circulating on the





            Cyber Defense eMagazine – October 2023 Edition                                                                                                                                                                                                          165
            Copyright © 2023, Cyber Defense Magazine. All rights reserved worldwide.