Move Fast, Stay Secure: Enterprise AI Agent Security in Practice

Agentic AI is moving from POCs to mission-critical workloads- and the attack surface is expanding fast. As LLM-driven agents reason, plan, and act across enterprise data and tools, a new class of risk emerges: the "Lethal Trifecta," where sensitive data access, untrusted inputs, and external actions converge to make prompt injection attacks exploitable end-to-end.

Karol Piekarski (Experian) and Nishith Sinha (Databricks) present the Databricks Agentic AI Security Framework (DASF v3), drawing on both Databricks' own AI infrastructure which handles millions of daily queries, and patterns from Fortune 100 deployments. The session walks through how the Databricks platform breaks the Lethal Trifecta at each layer: constraining what agents can access, hardening how they process inputs, and limiting what a compromised agent can actually do.

Finally, see how the Databricks Security team built, open-sourced, and actively uses BlackIce, a containerized AI red teaming toolkit, to shift security from a point-in-time exercise to continuous, automated validation. Leave with a practical framework for moving fast on AI without compromising governance or security.