{"product_id":"securing-microsoft-azure-openai-isbn-9781394291090","title":"Securing Microsoft Azure OpenAI","description":"\u003cp\u003e\u003cb\u003eSecurely harness the full potential of OpenAI’s artificial intelligence tools in Azure\u003c\/b\u003e \u003c\/p\u003e\u003cp\u003e\u003ci\u003eSecuring Microsoft Azure OpenAI\u003c\/i\u003e is an accessible guide to leveraging the comprehensive AI capabilities of Microsoft Azure while ensuring the utmost data security. This book introduces you to the collaborative powerhouse of Microsoft Azure and OpenAI, providing easy access to cutting-edge language models like GPT-4o, GPT-3.5-Turbo, and DALL-E. Designed for seamless integration, the Azure OpenAI Service revolutionizes applications from dynamic content generation to sophisticated natural language translation, all hosted securely within Microsoft Azure’s environment. \u003c\/p\u003e\u003cp\u003e\u003ci\u003eSecuring Microsoft Azure OpenAI\u003c\/i\u003e demonstrates responsible AI deployment, with a focus on identifying potential harm and implementing effective mitigation strategies. The book provides guidance on navigating risks and establishing best practices for securely and responsibly building applications using Azure OpenAI. By the end of this book, you’ll be equipped with the best practices for securely and responsibly harnessing the power of Azure OpenAI, making intelligent decisions that respect user privacy and maintain data integrity. \u003c\/p\u003e\u003cp\u003eIntroduction xxiii\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 1 Overview of Generative Artificial Intelligence Security 1\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eCommon Use Cases for Generative AI in the Enterprise 1\u003c\/p\u003e \u003cp\u003eGenerative Artificial Intelligence 1\u003c\/p\u003e \u003cp\u003eGenerative AI Use Cases 2\u003c\/p\u003e \u003cp\u003eLLM Terminology 3\u003c\/p\u003e \u003cp\u003eSample Three-Tier Application 4\u003c\/p\u003e \u003cp\u003ePresentation Tier 5\u003c\/p\u003e \u003cp\u003eApplication Tier 5\u003c\/p\u003e \u003cp\u003eData Tier 5\u003c\/p\u003e \u003cp\u003eGenerative AI Application Risks 5\u003c\/p\u003e \u003cp\u003eHallucinations 6\u003c\/p\u003e \u003cp\u003eMalicious Usage 6\u003c\/p\u003e \u003cp\u003eShadow AI 7\u003c\/p\u003e \u003cp\u003eUnfavorable Business Decisions 8\u003c\/p\u003e \u003cp\u003eEstablished Risks 8\u003c\/p\u003e \u003cp\u003eShared AI Responsibility Model 8\u003c\/p\u003e \u003cp\u003eShared Responsibility Model for the Cloud 9\u003c\/p\u003e \u003cp\u003eShared Responsibility Model for AI 10\u003c\/p\u003e \u003cp\u003eAI Usage 10\u003c\/p\u003e \u003cp\u003eAI Application 10\u003c\/p\u003e \u003cp\u003eAI Platform 11\u003c\/p\u003e \u003cp\u003eApplying the Shared Responsibility Model 11\u003c\/p\u003e \u003cp\u003eRegulation and Control Frameworks 12\u003c\/p\u003e \u003cp\u003eRegulation in the United States 12\u003c\/p\u003e \u003cp\u003eRegulation in the European Union 12\u003c\/p\u003e \u003cp\u003eNIST AI Risk Management Framework 14\u003c\/p\u003e \u003cp\u003eGovern 15\u003c\/p\u003e \u003cp\u003eMap 15\u003c\/p\u003e \u003cp\u003eMeasure 16\u003c\/p\u003e \u003cp\u003eManage 16\u003c\/p\u003e \u003cp\u003eKey Takeaways 16\u003c\/p\u003e \u003cp\u003eReferences 17\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 2 Security Controls for Azure OpenAI Service 19\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eOn the Importance of Selecting Appropriate Security Controls 19\u003c\/p\u003e \u003cp\u003eRisk Appetite 20\u003c\/p\u003e \u003cp\u003eComparing OpenAI Hosting Models 21\u003c\/p\u003e \u003cp\u003eOpenAI ChatGPT 21\u003c\/p\u003e \u003cp\u003ePrivacy and Compliance 21\u003c\/p\u003e \u003cp\u003eIdentity and Access Management 21\u003c\/p\u003e \u003cp\u003eData Protection and Encryption 22\u003c\/p\u003e \u003cp\u003eAudit Logging 22\u003c\/p\u003e \u003cp\u003eNetwork Isolation 22\u003c\/p\u003e \u003cp\u003eData Residency 22\u003c\/p\u003e \u003cp\u003eAzure OpenAI 22\u003c\/p\u003e \u003cp\u003ePrivacy and Compliance 23\u003c\/p\u003e \u003cp\u003eIdentity and Access Management 23\u003c\/p\u003e \u003cp\u003eData Protection and Encryption 23\u003c\/p\u003e \u003cp\u003eAudit Logging 23\u003c\/p\u003e \u003cp\u003eNetwork Isolation 23\u003c\/p\u003e \u003cp\u003eData Residency 23\u003c\/p\u003e \u003cp\u003eRecommendation for Enterprise Usage 24\u003c\/p\u003e \u003cp\u003eEvaluating Security Controls with MCSB 24\u003c\/p\u003e \u003cp\u003eControl Domains 26\u003c\/p\u003e \u003cp\u003eNetwork Security 27\u003c\/p\u003e \u003cp\u003eIdentity Management 28\u003c\/p\u003e \u003cp\u003ePrivileged Access 28\u003c\/p\u003e \u003cp\u003eData Protection 29\u003c\/p\u003e \u003cp\u003eAsset Management 29\u003c\/p\u003e \u003cp\u003eLogging and Threat Detection 29\u003c\/p\u003e \u003cp\u003eIncident Response 30\u003c\/p\u003e \u003cp\u003ePosture and Vulnerability Management 30\u003c\/p\u003e \u003cp\u003eEndpoint Security 31\u003c\/p\u003e \u003cp\u003eBackup and Recovery 31\u003c\/p\u003e \u003cp\u003eDevOps Security 32\u003c\/p\u003e \u003cp\u003eGovernance and Strategy 32\u003c\/p\u003e \u003cp\u003eSecurity Baselines 33\u003c\/p\u003e \u003cp\u003eApplying Microsoft Cloud Security Baseline to Azure OpenAI 33\u003c\/p\u003e \u003cp\u003eSecurity Profile 34\u003c\/p\u003e \u003cp\u003eHow to Approach the Security Baseline 34\u003c\/p\u003e \u003cp\u003eData Protection 35\u003c\/p\u003e \u003cp\u003eIdentity Management 36\u003c\/p\u003e \u003cp\u003eLogging and Threat Detection 37\u003c\/p\u003e \u003cp\u003eNetwork Security 38\u003c\/p\u003e \u003cp\u003eAsset Management 38\u003c\/p\u003e \u003cp\u003eBackup and Recovery 39\u003c\/p\u003e \u003cp\u003eEndpoint Security 40\u003c\/p\u003e \u003cp\u003ePosture and Vulnerability Management 40\u003c\/p\u003e \u003cp\u003ePrivileged Access 41\u003c\/p\u003e \u003cp\u003eSelected Controls 42\u003c\/p\u003e \u003cp\u003eMapping the Selected Controls to CIS and NIST 44\u003c\/p\u003e \u003cp\u003eUsing Azure Policy to Secure Azure OpenAI at Scale 46\u003c\/p\u003e \u003cp\u003eAzure Policy 46\u003c\/p\u003e \u003cp\u003eContinuous Compliance Monitoring 47\u003c\/p\u003e \u003cp\u003eAzure Policies for Azure OpenAI 48\u003c\/p\u003e \u003cp\u003eKey Takeaways 49\u003c\/p\u003e \u003cp\u003eReferences 49\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 3 Implementing Azure OpenAI Security Controls 51\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eOWASP Top 10 for LLM Applications 51\u003c\/p\u003e \u003cp\u003ePrompt Injection 52\u003c\/p\u003e \u003cp\u003eInsecure Output Handling 52\u003c\/p\u003e \u003cp\u003eTraining Data Poisoning 53\u003c\/p\u003e \u003cp\u003eModel Denial of Service 53\u003c\/p\u003e \u003cp\u003eSupply Chain Vulnerabilities 53\u003c\/p\u003e \u003cp\u003eSensitive Information Disclosure 54\u003c\/p\u003e \u003cp\u003eInsecure Plugin Design 54\u003c\/p\u003e \u003cp\u003eExcessive Agency 54\u003c\/p\u003e \u003cp\u003eOverreliance 55\u003c\/p\u003e \u003cp\u003eModel Theft 55\u003c\/p\u003e \u003cp\u003eAccess Control 56\u003c\/p\u003e \u003cp\u003eImplementing Access Control for Azure OpenAI 56\u003c\/p\u003e \u003cp\u003eCognitive Services OpenAI User 57\u003c\/p\u003e \u003cp\u003eCognitive Services OpenAI Contributor 58\u003c\/p\u003e \u003cp\u003eAzure AI Administrator 59\u003c\/p\u003e \u003cp\u003eAzure AI Developer 61\u003c\/p\u003e \u003cp\u003eAzure AI Enterprise Network Connection Approver 62\u003c\/p\u003e \u003cp\u003eAzure AI Inference Deployment Operator 64\u003c\/p\u003e \u003cp\u003ePreventing Local Authentication 65\u003c\/p\u003e \u003cp\u003eDisable Local Authentication Using Bicep 66\u003c\/p\u003e \u003cp\u003eDisable Local Authentication Using Terraform 66\u003c\/p\u003e \u003cp\u003eDisable Local Authentication Using ARM Templates 67\u003c\/p\u003e \u003cp\u003ePrevent Local Authentication Using PowerShell 67\u003c\/p\u003e \u003cp\u003eEnforcing with Azure Policy 67\u003c\/p\u003e \u003cp\u003eAudit Logging 68\u003c\/p\u003e \u003cp\u003eControl Plane Audit Logging 68\u003c\/p\u003e \u003cp\u003eData Plane Audit Logging 71\u003c\/p\u003e \u003cp\u003eEnable Data Plane Audit Logging Using Azure Portal 72\u003c\/p\u003e \u003cp\u003eEnable Data Plane Audit Logging Using Bicep 73\u003c\/p\u003e \u003cp\u003eEnable Data Plane Audit Logging Using Terraform 73\u003c\/p\u003e \u003cp\u003eEnable Data Plane Audit Logging Using ARM Templates 74\u003c\/p\u003e \u003cp\u003eEnable Data Plane Audit Logging Using PowerShell 76\u003c\/p\u003e \u003cp\u003eEnable Data Plane Audit Logging Using Azure cli 76\u003c\/p\u003e \u003cp\u003eEnforcing with Azure Policy 77\u003c\/p\u003e \u003cp\u003eEnable Logging by Category Group for Cognitive Services 77\u003c\/p\u003e \u003cp\u003eNetwork Isolation 82\u003c\/p\u003e \u003cp\u003eDefault Network Controls 83\u003c\/p\u003e \u003cp\u003eControl Inbound Network Traffic 83\u003c\/p\u003e \u003cp\u003eControl Inbound Network Traffic Using the Azure Portal 84\u003c\/p\u003e \u003cp\u003eControl Inbound Network Traffic Using Bicep 84\u003c\/p\u003e \u003cp\u003eControl Inbound Network Traffic with Private Endpoints Using Infrastructure as Code 85\u003c\/p\u003e \u003cp\u003eControl Inbound Network Traffic Using Terraform 87\u003c\/p\u003e \u003cp\u003eControl Inbound Network Traffic with Private Endpoints Using Terraform 87\u003c\/p\u003e \u003cp\u003eControl Inbound Network Traffic Using ARM Templates 89\u003c\/p\u003e \u003cp\u003eControl Inbound Network Traffic with Private Endpoints Using ARM Templates 90\u003c\/p\u003e \u003cp\u003eControl Inbound Network Traffic Using PowerShell 93\u003c\/p\u003e \u003cp\u003eControl Inbound Network Traffic with Private Endpoints Using PowerShell 94\u003c\/p\u003e \u003cp\u003eControl Inbound Network Traffic Using Azure cli 95\u003c\/p\u003e \u003cp\u003eControl Inbound Network Traffic with Private Endpoints Using Azure cli 95\u003c\/p\u003e \u003cp\u003eControl Outbound Network Traffic 97\u003c\/p\u003e \u003cp\u003eEnable Data Loss Prevention Using REST 97\u003c\/p\u003e \u003cp\u003eEnable Data Loss Prevention Using Bicep 98\u003c\/p\u003e \u003cp\u003eEnable Data Loss Prevention Using Terraform 98\u003c\/p\u003e \u003cp\u003eEnable Data Loss Prevention Using ARM Templates 99\u003c\/p\u003e \u003cp\u003eEnforcing with Azure Policy 101\u003c\/p\u003e \u003cp\u003eAzure AI Services Resources Should Restrict Network Access 101\u003c\/p\u003e \u003cp\u003eAzure AI Services Resources Should Use Azure Private Link 103\u003c\/p\u003e \u003cp\u003eEncryption at Rest 105\u003c\/p\u003e \u003cp\u003eImplementing Azure OpenAI with CMK 106\u003c\/p\u003e \u003cp\u003eImplement CMK Using Azure Portal 106\u003c\/p\u003e \u003cp\u003eImplement CMK Using Bicep 107\u003c\/p\u003e \u003cp\u003eImplement CMK Using Terraform 109\u003c\/p\u003e \u003cp\u003eImplement CMK Using ARM Templates 111\u003c\/p\u003e \u003cp\u003eImplement CMK Using PowerShell 114\u003c\/p\u003e \u003cp\u003eImplement CMK Using the Azure cli 115\u003c\/p\u003e \u003cp\u003eEnforcing with Azure Policy 116\u003c\/p\u003e \u003cp\u003eAzure AI Services Resources Should Encrypt Data at Rest with a CMK 117\u003c\/p\u003e \u003cp\u003eContent Filtering Controls 119\u003c\/p\u003e \u003cp\u003eSystem Safety Prompts 119\u003c\/p\u003e \u003cp\u003eAzure AI Content Safety 120\u003c\/p\u003e \u003cp\u003eContent Filtering 120\u003c\/p\u003e \u003cp\u003ePrompt Shields 121\u003c\/p\u003e \u003cp\u003eProtected Material Detection 121\u003c\/p\u003e \u003cp\u003eGroundedness Detection 121\u003c\/p\u003e \u003cp\u003eCreating a Content Filter 121\u003c\/p\u003e \u003cp\u003eImplementing Content Filtering Programmatically 122\u003c\/p\u003e \u003cp\u003eContent Safety Input Restrictions 123\u003c\/p\u003e \u003cp\u003eKey Takeaways 123\u003c\/p\u003e \u003cp\u003eReferences 124\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 4 Securing the Entire Application 125\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eThe Three-Tier LLM Application in Azure 125\u003c\/p\u003e \u003cp\u003ePresentation Tier 126\u003c\/p\u003e \u003cp\u003eApplication Tier 126\u003c\/p\u003e \u003cp\u003eData Tier 126\u003c\/p\u003e \u003cp\u003eOn Threat Modeling 126\u003c\/p\u003e \u003cp\u003eThreat Model of the Three-Tier Application 127\u003c\/p\u003e \u003cp\u003eRevised Application Architecture 129\u003c\/p\u003e \u003cp\u003eRetrieval-Augmented Generation 129\u003c\/p\u003e \u003cp\u003eRAG in Azure 130\u003c\/p\u003e \u003cp\u003eAzure AI Search 130\u003c\/p\u003e \u003cp\u003eAzure Cosmos DB 131\u003c\/p\u003e \u003cp\u003eApplication Architecture with RAG 131\u003c\/p\u003e \u003cp\u003eAzure Front Door 132\u003c\/p\u003e \u003cp\u003eSecurity Profile 132\u003c\/p\u003e \u003cp\u003eSecurity Baseline 132\u003c\/p\u003e \u003cp\u003eImplementing Security Controls 133\u003c\/p\u003e \u003cp\u003eAccess Control 133\u003c\/p\u003e \u003cp\u003eAudit Logging 133\u003c\/p\u003e \u003cp\u003eNetwork Isolation 141\u003c\/p\u003e \u003cp\u003eEncryption at Rest 152\u003c\/p\u003e \u003cp\u003eEnforcing Controls with Policies 152\u003c\/p\u003e \u003cp\u003eAzure App Service 153\u003c\/p\u003e \u003cp\u003eSecurity Profile 153\u003c\/p\u003e \u003cp\u003eSecurity Baseline 153\u003c\/p\u003e \u003cp\u003eImplementing Security Controls 155\u003c\/p\u003e \u003cp\u003eAccess Control 156\u003c\/p\u003e \u003cp\u003eAudit Logging 163\u003c\/p\u003e \u003cp\u003eNetwork Isolation 169\u003c\/p\u003e \u003cp\u003eEncryption at Rest 176\u003c\/p\u003e \u003cp\u003eEnforcing Controls with Policies 176\u003c\/p\u003e \u003cp\u003eAPI Management 177\u003c\/p\u003e \u003cp\u003eSecurity Profile 177\u003c\/p\u003e \u003cp\u003eSecurity Baseline 178\u003c\/p\u003e \u003cp\u003eImplementing Security Controls 178\u003c\/p\u003e \u003cp\u003eAccess Control 179\u003c\/p\u003e \u003cp\u003eAudit Logging 180\u003c\/p\u003e \u003cp\u003eNetwork Isolation 186\u003c\/p\u003e \u003cp\u003eEncryption at Rest 201\u003c\/p\u003e \u003cp\u003eEnforcing Controls with Policies 202\u003c\/p\u003e \u003cp\u003eStorage Account 202\u003c\/p\u003e \u003cp\u003eSecurity Profile 202\u003c\/p\u003e \u003cp\u003eSecurity Baseline 203\u003c\/p\u003e \u003cp\u003eImplementing Security Controls 204\u003c\/p\u003e \u003cp\u003eAccess Control 204\u003c\/p\u003e \u003cp\u003eAudit Logging 209\u003c\/p\u003e \u003cp\u003eNetwork Isolation 216\u003c\/p\u003e \u003cp\u003eEncryption at Rest 225\u003c\/p\u003e \u003cp\u003eBackup and Recovery 232\u003c\/p\u003e \u003cp\u003eDiscover, Classify, and Protect Sensitive Data 238\u003c\/p\u003e \u003cp\u003eEnforcing Controls with Policies 238\u003c\/p\u003e \u003cp\u003eCosmos DB 238\u003c\/p\u003e \u003cp\u003eSecurity Profile 239\u003c\/p\u003e \u003cp\u003eSecurity Baseline 239\u003c\/p\u003e \u003cp\u003eImplementing Security Controls 241\u003c\/p\u003e \u003cp\u003eAccess Control 241\u003c\/p\u003e \u003cp\u003eAudit Logging 244\u003c\/p\u003e \u003cp\u003eNetwork Isolation 249\u003c\/p\u003e \u003cp\u003eEncryption at Rest 256\u003c\/p\u003e \u003cp\u003eBackup and Recovery 262\u003c\/p\u003e \u003cp\u003eEnforcing Controls with Policies 266\u003c\/p\u003e \u003cp\u003eAzure AI Search 266\u003c\/p\u003e \u003cp\u003eSecurity Profile 266\u003c\/p\u003e \u003cp\u003eSecurity Baseline 267\u003c\/p\u003e \u003cp\u003eImplementing Security Controls 268\u003c\/p\u003e \u003cp\u003eAccess Control 268\u003c\/p\u003e \u003cp\u003eAudit Logging 272\u003c\/p\u003e \u003cp\u003eNetwork Isolation 278\u003c\/p\u003e \u003cp\u003eEncryption at Rest 287\u003c\/p\u003e \u003cp\u003eEnforcing Controls with Policies 294\u003c\/p\u003e \u003cp\u003eKey Takeaways 294\u003c\/p\u003e \u003cp\u003eReferences 294\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 5 Moving to Production 297\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eLLM Application Security Lifecycle 297\u003c\/p\u003e \u003cp\u003eModel Supply Chain 298\u003c\/p\u003e \u003cp\u003eSecurity Testing 299\u003c\/p\u003e \u003cp\u003eModel Safety Evaluation 299\u003c\/p\u003e \u003cp\u003eHow to Use Model Safety Evaluation 300\u003c\/p\u003e \u003cp\u003eAdversarial Testing 300\u003c\/p\u003e \u003cp\u003eHow to Use the Adversarial Simulator Service 301\u003c\/p\u003e \u003cp\u003eRed Teaming 304\u003c\/p\u003e \u003cp\u003eCrescendo Multiturn Attack 304\u003c\/p\u003e \u003cp\u003eRed Teaming with PyRIT 304\u003c\/p\u003e \u003cp\u003eContent Credentials 305\u003c\/p\u003e \u003cp\u003eAI Security Posture Management 307\u003c\/p\u003e \u003cp\u003eDiscover and Manage Shadow AI 307\u003c\/p\u003e \u003cp\u003eDiscover SaaS Applications 307\u003c\/p\u003e \u003cp\u003eDiscover Generative AI Applications 309\u003c\/p\u003e \u003cp\u003eManage Generative AI Applications 312\u003c\/p\u003e \u003cp\u003eAlert on Anomalous Activity and Applications 313\u003c\/p\u003e \u003cp\u003eDefender for Cloud AI Workloads 314\u003c\/p\u003e \u003cp\u003eDiscovery 314\u003c\/p\u003e \u003cp\u003ePosture Management 314\u003c\/p\u003e \u003cp\u003eSecurity Alerting 314\u003c\/p\u003e \u003cp\u003eSecurity Posture Management 315\u003c\/p\u003e \u003cp\u003eInvestigating Security Alerts 316\u003c\/p\u003e \u003cp\u003eAlert Details 317\u003c\/p\u003e \u003cp\u003eSupporting Evidence 318\u003c\/p\u003e \u003cp\u003eTake Action 319\u003c\/p\u003e \u003cp\u003eManaging Incidents 323\u003c\/p\u003e \u003cp\u003eInstrumenting Security Alert Ingestion 324\u003c\/p\u003e \u003cp\u003eAzure OpenAI Alerts 326\u003c\/p\u003e \u003cp\u003eDetected Credential Theft Attempts on an Azure OpenAI Model Deployment 327\u003c\/p\u003e \u003cp\u003eA Jailbreak Attempt on an Azure OpenAI Model Deployment Was Blocked by Azure AI Content Safety Prompt Shields 327\u003c\/p\u003e \u003cp\u003eA Jailbreak Attempt on an Azure OpenAI Model Deployment Was Detected by Azure AI Content Safety Prompt Shields 327\u003c\/p\u003e \u003cp\u003eSensitive Data Exposure Detected in Azure OpenAI Model Deployment 327\u003c\/p\u003e \u003cp\u003eCorrupted AI Application, Model, or Data Directed a Phishing Attempt at a User 328\u003c\/p\u003e \u003cp\u003ePhishing URL Shared in an AI Application 328\u003c\/p\u003e \u003cp\u003ePhishing Attempt Detected in an AI Application 328\u003c\/p\u003e \u003cp\u003eDefender for Cloud Alerts for Other Services 328\u003c\/p\u003e \u003cp\u003eApp Service Alerts 329\u003c\/p\u003e \u003cp\u003eAPI Management Alerts 330\u003c\/p\u003e \u003cp\u003eStorage Account Alerts 331\u003c\/p\u003e \u003cp\u003eCosmos DB Alerts 332\u003c\/p\u003e \u003cp\u003eLLM Application in Your Cloud Security Architecture 332\u003c\/p\u003e \u003cp\u003eCloud Security Control Domains 333\u003c\/p\u003e \u003cp\u003eAsset Management 333\u003c\/p\u003e \u003cp\u003eIncident Response 334\u003c\/p\u003e \u003cp\u003ePrivileged Access 336\u003c\/p\u003e \u003cp\u003ePosture and Vulnerability Management 337\u003c\/p\u003e \u003cp\u003eLanding Zones 339\u003c\/p\u003e \u003cp\u003eAbout Landing Zones 339\u003c\/p\u003e \u003cp\u003eMicrosoft Enterprise-Scale Landing Zones 339\u003c\/p\u003e \u003cp\u003eMicrosoft Landing Zone Accelerator for OpenAI 342\u003c\/p\u003e \u003cp\u003eLLM Application in the Landing Zone 342\u003c\/p\u003e \u003cp\u003eThe Sample Application in the Landing Zone 342\u003c\/p\u003e \u003cp\u003eAccess Control 343\u003c\/p\u003e \u003cp\u003eSecurity Monitoring 343\u003c\/p\u003e \u003cp\u003eIncident Response 344\u003c\/p\u003e \u003cp\u003eNetwork 344\u003c\/p\u003e \u003cp\u003eKey Takeaways 345\u003c\/p\u003e \u003cp\u003eReferences 345\u003c\/p\u003e \u003cp\u003eIndex 347\u003c\/p\u003e  \u003cp\u003e\u003cb\u003eKARL OTS\u003c\/b\u003e is Global Head of Cloud Security at EPAM Systems, an engineering and consulting firm. He leads a team of experts in delivering security and compliance solutions for cloud and AI deployments for Fortune 500 enterprises in a variety of industries. He has over 15 years’ experience in tech and is a trusted advisor and thought leader. Karl is also a Microsoft Regional Director and Security MVP.   \u003c\/p\u003e\u003cp\u003e\u003cb\u003eSecurely harness the full potential of OpenAI’s artificial intelligence tools in Azure\u003c\/b\u003e \u003c\/p\u003e\u003cp\u003e\u003ci\u003eSecuring Microsoft Azure OpenAI\u003c\/i\u003e is an accessible guide to leveraging the comprehensive AI capabilities of Microsoft Azure while ensuring the utmost data security. This book introduces you to the collaborative powerhouse of Microsoft Azure and OpenAI, providing easy access to cutting-edge language models like GPT-4o, GPT-3.5-Turbo, and DALL-E. Designed for seamless integration, the Azure OpenAI Service revolutionizes applications from dynamic content generation to sophisticated natural language translation, all hosted securely within Microsoft Azure’s environment. \u003c\/p\u003e\u003cp\u003e\u003ci\u003eSecuring Microsoft Azure OpenAI\u003c\/i\u003e demonstrates responsible AI deployment, with a focus on identifying potential harm and implementing effective mitigation strategies. The book provides guidance on navigating risks and establishing best practices for securely and responsibly building applications using Azure OpenAI. By the end of this book, you’ll be equipped with the best practices for securely and responsibly harnessing the power of Azure OpenAI, making intelligent decisions that respect user privacy and maintain data integrity.\u003c\/p\u003e","brand":"Wiley","offers":[{"title":"Default Title","offer_id":47989997994213,"sku":"NP9781394291090","price":55.0,"currency_code":"USD","in_stock":false}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/1842\/7735\/files\/9781394291090.jpg?v=1761786158","url":"https:\/\/k12savings.com\/products\/securing-microsoft-azure-openai-isbn-9781394291090","provider":"K12savings","version":"1.0","type":"link"}