Securing Intelligence: Open-Source AI Across the Lifecycle

Abstract Artificial intelligence (AI) systems are becoming integral to enterprise operations, yet they expose organizations to novel security threats—especially when open-source models are adopted without rigorous vetting. This paper presents a sociotechnical framework that integrates technical defenses with governance, aligning NIST’s Cybersecurity Framework (CSF) and AI Risk-Management Framework (AI RMF) with ISO/IEC 27001 controls and Zero-Trust principles. Drawing on recent industry surveys, vendor tool analyses, and documented incidents of backdoored models, the framework prescribes multilayered safeguards across the AI lifecycle: secure development and supply-chain validation, adversarially robust deployment, continuous monitoring and incident response, and human-centered policies and training. The result is a defense-in-depth strategy that enables enterprises to leverage AI confidently while mitigating risks such as data poisoning, prompt injection, model theft, and the leakage ...

Introduction In May 2025, security researchers at Invariant Labs disclosed a critical vulnerability in the Model Context Protocol (MCP) integration for GitHub. MCP is a new open protocol that connects large language model (LLM) agents with external tools and data sources in a standardized way. The affected GitHub MCP server (an open-source integration with ~14k stars) enables AI agents to interface with GitHub APIs for tasks like reading repository content, managing issues, and automating workflows. Invariant’s findings show how an attacker can abuse this integration via a prompt injection in a public GitHub issue to hijack an AI agent and leak data from private repositories. This deep dive will examine the MCP architecture, explain how the vulnerability arises, and analyze the real-world risks—ranging from compromised GitHub Actions to supply chain integrity issues—before discussing mitigation strategies for secure MCP use in AI pipelines. MCP Architecture and How It Works What is MCP...

AI-Driven Cybersecurity Innovation Integration Plan Introduction This document outlines a comprehensive sociotechnical plan to integrate cutting-edge AI-driven cybersecurity innovation into the organization's defenses. The innovation in focus is a predictive threat intelligence and autonomous incident response system powered by generative AI. In cybersecurity, this emerging technology analyzes vast threat data and anticipates attacks, then acts to contain them with minimal human intervention. Such AI-driven solutions are increasingly seen as transformative, shifting security from reactive to proactive. They leverage AI's speed and pattern-recognition capabilities – for example, AI can rapidly analyze large datasets and detect complex attack patterns, making it an invaluable tool for identifying and mitigating threats in today's fast-evolving landscape Kamran (2025). This plan describes the scope, purpose, driving forces, challenges, and recommended method for implementing t...