Page 165 - Cyber Defense eMagazine October 2023
P. 165
Why Continuous Training Must Come Before
The AI-driven SDLC
By Mike Burch, Director of Application Security, Security Journey
Despite the hype, generative AI is unlikely to transform the world. But there are sectors where it could
significantly disrupt the status quo. One of these is software development. Yet the time savings and
productivity benefits of using tools like ChatGPT start to erode if what they’re producing is full of bugs. At
best, such inadvertent errors will require extra time for developer teams to fix. At worst, they might creep
into production.
If organizations want to take advantage of AI to optimize the software development lifecycle (SDLC), they
must first give their teams suitable training to manage the risk of something going wrong.
One step forward, two steps back
Every step forward we take with AI, the bad guys hit back. While generative AI and large language models
(LLMs) could be a productivity boon for stretched developer teams, the technology has also been seized
on by those with nefarious intent. Tools like FraudGPT and WormGPT are already circulating on the
Cyber Defense eMagazine – October 2023 Edition 165
Copyright © 2023, Cyber Defense Magazine. All rights reserved worldwide.