Skip to content

Domain 5: Security, Compliance, and Governance (14%) โ€‹

โ† Domain 4 ยท Exam Tips โ†’


5.1: Securing AI Systems โ€‹

Data Security โ€‹

AI Security

1 / 3
โ“

What is Prompt Injection?

(Click to reveal)
๐Ÿ’ก
Malicious prompts to bypass safety controls
Example: "Ignore previous instructions and..."
Protection: Input sanitization, rate limiting, monitoring.

Encryption:

  • โœ… At Rest: AWS KMS, S3 encryption
  • โœ… In Transit: TLS/SSL, HTTPS

Access Control:

  • IAM policies for fine-grained permissions
  • VPC for network isolation
  • Security groups and NACLs

Input Validation:

  • Sanitize user inputs
  • Limit input size
  • Check for injection attacks

Output Filtering:

  • Content moderation
  • PII detection and redaction
  • Toxicity filtering

Model Security โ€‹

Adversarial Attacks:

  • Prompt Injection: Malicious prompts to bypass safety
  • Data Poisoning: Corrupt training data
  • Model Inversion: Extract training data

Protection:

  • Input sanitization
  • Rate limiting
  • Monitoring for unusual patterns
  • Regular security audits

5.2: Governance and Compliance โ€‹

Model Governance โ€‹

Version Control:

  • SageMaker Model Registry
  • Track model lineage
  • Associate models with data/code

Approval Workflows:

  • Manual approval before production
  • Automated testing gates
  • Change management

Audit Trails:

  • CloudTrail logs all API calls
  • SageMaker logs training jobs
  • Model deployment history

Compliance โ€‹

Compliance Requirements

1 / 3
โ“

What is HIPAA compliance for AI?

(Click to reveal)
๐Ÿ’ก
Healthcare data protection
Use HIPAA-eligible AWS services
Encrypt PHI, access controls, audit logs.

Data Residency:

  • Choose appropriate AWS Region
  • Keep data in specific geographic location

Industry Regulations:

  • HIPAA: Healthcare data (use HIPAA-eligible services)
  • GDPR: EU data privacy (right to explanation)
  • SOC 2: Security controls
  • PCI DSS: Payment card data

Documentation Requirements:

  • Model cards
  • Training data sources
  • Performance metrics
  • Bias testing results

Quick Reference: AWS AI/ML Services โ€‹

When to Use Which Service? โ€‹

NeedService
Access foundation modelsAmazon Bedrock
Business assistantAmazon Q
Code suggestionsAmazon CodeWhisperer
End-to-end ML platformAmazon SageMaker
Image/video analysisAmazon Rekognition
Extract text from documentsAmazon Textract
Sentiment analysisAmazon Comprehend
TranslationAmazon Translate
Speech-to-textAmazon Transcribe
Text-to-speechAmazon Polly
ChatbotAmazon Lex
RecommendationsAmazon Personalize
Fraud detectionAmazon Fraud Detector
Intelligent searchAmazon Kendra
Human reviewAmazon Augmented AI (A2I)
Vector database for RAGAmazon OpenSearch Service
Detect biasSageMaker Clarify
Monitor modelsSageMaker Model Monitor

โ† Domain 4 ยท Exam Guide โ†’

Happy Studying! ๐Ÿš€ โ€ข Privacy-friendly analytics โ€” no cookies, no personal data
Privacy Policy โ€ข AI Disclaimer โ€ข Report an issue