< ciso
brief />
Tag Banner

All news with #model governance tag

23 articles

Thirteen demos for Gemini Enterprise Agent Platform

🔎 This post introduces 13 code-first demos for the Gemini Enterprise Agent Platform, showing how to build, scale, govern, and optimize agents using the ADK and Agents CLI. The demos range from an ADK foundation codelab and MCP data connectors to stateful deployment on Agent Runtime, event-driven long-running workflows, and production-grade governance with Agent Gateway and Model Armor. Each demo teaches practical patterns — from UI generation and multi-language A2A pipelines to test-driven security, AutoRater evaluations, and cross-framework orchestration — so teams can prototype locally and then deploy and monitor agents at enterprise scale.
read more →

Build an AI incident response playbook now

🔍 Organizations increasingly deploy AI in production yet lack effective governance and IR playbooks tailored for AI. The author, drawing on 14 years in security and recent AI risk work, argues traditional IR frameworks don’t cover model-originated failures like hallucinations or degradation. He recommends practical pre-incident steps: an AI Bill of Materials, actionable model cards, a named data scientist on call, and defined rollback thresholds to improve detection, containment and legal readiness.
read more →

SageMaker Adds Serverless Fine-Tuning for Nemotron 3

🚀 Amazon SageMaker AI now supports serverless customization for Nvidia Nemotron 3 Nano via supervised fine-tuning (SFT) and reinforcement fine-tuning (RFT). This open-weight 30B-parameter model can be deployed and adapted to specific domains and workflows directly within SageMaker. Serverless customization handles infrastructure and training orchestration, enabling teams to focus on data and evaluation while paying only for usage. The feature is available in US East (N. Virginia), US West (Oregon), Asia Pacific (Tokyo), and Europe (Ireland), and can be launched from SageMaker Studio or via the SageMaker Python SDK.
read more →

Microsoft Discovery GA and App Preview for R&D

🧭 Microsoft announces the general availability of Microsoft Discovery, a platform for building and governing agentic AI workflows tailored to scientific and engineering R&D. The release includes a preview of the Microsoft Discovery app, a local desktop experience for researchers and small teams to explore hypotheses, literature, and iterative experimentation. The platform emphasizes evidence preservation, traceability, governance, and integration with existing tools and institutional data to support repeatable, transparent scientific workflows.
read more →

Managing models, cost, and quality in Foundry

🛠️ Microsoft Foundry presents a unified platform to select, evaluate, optimize, and operate AI models across the full application lifecycle. The post emphasizes that production systems require continuous model selection, validation on real data, cost and latency management, and governance rather than simply picking the most capable model. Foundry adds new model families and Fireworks AI for production-grade open model inference via a single Azure endpoint with enterprise SLAs. It provides model routing, benchmarking with custom datasets, continuous evaluation, and operational controls like versioning, observability, and rollout strategies.
read more →

Embed AI Governance into Release Infrastructure

🚦The author argues that traditional post-hoc compliance reviews fail for AI because AI systems change continuously. Drawing on research into Chinese and EU approaches, the piece recommends embedding governance into CI/CD pipelines so model cards, data lineage and risk evaluations are generated and enforced as deployment gates. It also urges treating agent identity as first-class security control and positioning compliance as operational release infrastructure rather than a review layer.
read more →

Measuring AI Security: Limits of Benchmarks and Assurance

🔒 AI security cannot be reduced to a single benchmark. Over the past 30 years software security evolved from black‑box penetration testing to white‑box analysis and process-driven standards such as BSIMM, and the report argues that AI requires a similar assurance-first approach. Benchmarks fail to capture emergent, systemic properties, so organizations should clean up their WHAT piles, adopt risk-based processes, and accept that there is no simple security meter for AI.
read more →

Gemini Enterprise Agent Platform Launch by Google Cloud

🚀 Google Cloud today launched Gemini Enterprise Agent Platform, the successor to Vertex AI designed to build, scale, govern, and optimize production-grade AI agents. The platform centralizes access to 200+ models via Model Garden, and provides visual and code-first tooling through Agent Studio and the Agent Development Kit (ADK). It adds a long-running Agent Runtime with Memory Bank, identity and registry services, and integrated security, simulation, and observability to accelerate and govern agent-driven workflows.
read more →

Google Cloud Knowledge Catalog: Context Engine for Agents

🔎 Google is evolving Dataplex into the Knowledge Catalog, an always-on context engine that supplies AI agents with business semantics, entity relationships, and governance to reduce hallucinations and latency. It aggregates metadata across Google services and third-party catalogs, ingests LookML and BigQuery measures, and packages governed data products for production use. Enrichment via multimodal extraction and Gemini plus access-aware, high-precision semantic search helps agents retrieve authoritative context in real time.
read more →

Cloudflare's Internal AI Engineering Stack Overview

🤖 Over eleven months Cloudflare built an internal AI engineering stack that integrates AI Gateway, Workers AI, the Agents SDK, and developer tools like OpenCode and Backstage. The platform centralizes authentication with Cloudflare Access, routes model traffic and costs through AI Gateway, and runs inference on Workers AI to reduce latency and expense. The deployment includes an AI Code Reviewer and an Engineering Codex to enforce standards and maintain quality at scale.
read more →

Amazon SageMaker AI Adds Serverless Customization for Models

🚀 Amazon SageMaker AI now offers serverless model customization and reinforcement fine-tuning for 12 additional open‑weight models, enabling SFT, DPO, and advanced RFT techniques such as RLVR and RLAIF without infrastructure management. You can fine‑tune and evaluate these models on a pay‑per‑use basis across multiple regions. This simplifies alignment for complex, domain‑specific tasks and improves accuracy on verifiable tasks like code generation and structured extraction. No cluster setup, capacity planning, or distributed training expertise is required.
read more →

Palo Alto Networks and ServiceNow Integrate Prisma AIRS

🔒 The integration of Prisma AIRS with ServiceNow's AI Control Tower embeds AI runtime security and model governance directly into enterprise workflows. Prisma AIRS delivers real‑time detection and blocking of threats such as prompt injection and offensive outputs, while Model Security supplies risk profiles, red‑teaming results and vulnerability reports for third‑party and custom models. Together they provide centralized visibility, policy enforcement and safer AI adoption without disrupting user productivity.
read more →

Proving the Person on the Other Side Is Real, 2026 Test

🔐 By 2026, the central competition in identity-related work will be the ability to prove that the person behind a high-impact action is a real, accountable human. Generative AI and deepfakes create synthetic identities that can pass routine checks, contaminate risk models and hijack estate workflows. Defenses must focus on provenance, cross-channel consistency and continuous, risk-based verification tied to audit-grade trails.
read more →

BMW and Google Cloud Build Automated SLM Optimization

🚗 BMW Group and Google Cloud present a proof-of-concept pipeline to compress, fine-tune, evaluate, and deploy domain-specific small language models (SLMs) for in-vehicle voice commands. They position SLMs as a practical compromise between full cloud-based LLMs and constrained onboard hardware, reducing latency and network dependence. Using Vertex AI Pipelines, the automated workflow explores quantization, pruning, distillation, LoRA fine-tuning, and RL-based alignment, and validates models on Android/AOSP head-unit environments. The team publishes the pipeline code to encourage reuse and reproducible experimentation.
read more →

Why Stochastic Rounding Enables Modern Generative AI

🔬 Stochastic rounding restores tiny gradient updates that deterministic low-precision formats would otherwise zero out, enabling stable training in FP8 and 4‑bit regimes. Frameworks such as JAX and the Qwix quantization toolkit apply SR on Google Cloud accelerators—TPU MXUs and NVIDIA Blackwell A4X VMs—to prevent vanishing updates. The approach trades deterministic bias for unbiased noise, often acting as implicit regularization and preserving model convergence while boosting efficiency.
read more →

Amazon Nova Forge: Build Frontier Models with Nova

🚀 Amazon Web Services announced general availability of Nova Forge, a SageMaker AI service that enables organizations to build custom frontier models from Nova checkpoints across pre-, mid-, and post-training phases. Developers can blend proprietary data with Amazon-curated datasets, run Reinforcement Fine Tuning (RFT) with in-environment reward functions, and apply custom safety guardrails via a built-in responsible AI toolkit. Nova Forge includes early access to Nova 2 Pro and Nova 2 Omni and is available today in US East (N. Virginia).
read more →

Vertex AI Agent Builder: Build, Scale, Govern Agents

🚀 Vertex AI Agent Builder is Google Cloud's integrated platform to build, scale, and govern production AI agents. The update expands the Agent Development Kit (ADK) and Agent Engine with configurable context layers to reduce token usage, an adaptable plugins framework, and new language SDK support including Go. Production features include observability, evaluation tools, simplified deployment via the ADK CLI, and strengthened governance with native agent identities and Model Armor protections.
read more →

Vertex AI Training Expands Large-Scale Training Capabilities

🚀 Vertex AI Training introduces managed features designed for large-scale model development, simplifying cluster provisioning, job orchestration, and resiliency across hundreds to thousands of accelerators. The offering integrates Cluster Director, Dynamic Workload Scheduler, optimized checkpointing, and curated training recipes, including NVIDIA NeMo support. These capabilities reduce operational overhead and accelerate transitions from pretraining to fine-tuning while improving cost and uptime efficiency.
read more →

Manipulating Meeting Notetakers: AI Summarization Risks

📝 In many organizations the most consequential meeting attendee is the AI notetaker, whose summaries often become the authoritative meeting record. Participants can tailor their speech—using cue phrases, repetition, timing, and formulaic phrasing—to increase the chance their points appear in summaries, a behavior the author calls AI summarization optimization (AISO). These tactics mirror SEO-style optimization and exploit model tendencies to overweight early or summary-style content. Without governance and technical safeguards, summaries may misrepresent debate and confer an invisible advantage to those who game the system.
read more →

Architectures, Risks, and Adoption of AI-SOC Platforms

🔍 This article frames the shift from legacy SOCs to AI-SOC platforms, arguing leaders must evaluate impact, transparency, and integration rather than pursue AI for its own sake. It outlines four architectural dimensions—functional domain, implementation model, integration architecture, and deployment—and prescribes a phased adoption path with concrete vendor questions. The piece flags key risks including explainability gaps, data residency, vendor lock-in, model drift, and cost surprises, and highlights mitigation through governance, human-in-the-loop controls, and measurable POCs.
read more →