Compliance, AI, and DevOps in Finance
The Intersection of AI, Finance, and Compliance
In this thought-provoking episode of the Open Source in Finance Podcast, hosted by FINOS (Fintech Open Source Foundation), Cole Kennedy explores the critical challenges facing financial institutions as they adopt AI and machine learning technologies. The conversation delves deep into how traditional compliance frameworks must evolve to address the unique risks posed by AI models in financial services.
As financial institutions increasingly rely on AI for everything from fraud detection to algorithmic trading, the need for robust compliance and security measures has never been greater. Cole shares insights from TestifySec's work with major financial institutions, revealing how they're pioneering new approaches to AI governance that satisfy both innovation goals and regulatory requirements.
Why AI Models Are Supply Chain Artifacts
One of the key insights from this discussion is the paradigm shift in thinking about AI models. Rather than treating them as black boxes, Cole advocates for viewing AI models as supply chain artifacts that require the same level of scrutiny and verification as any other software component. This means tracking not just the model itself, but the entire lineage of data, code, and infrastructure that went into creating it.
The podcast also explores the role of open source in financial services, discussing how collaborative development can actually enhance security and compliance when combined with proper attestation and verification mechanisms.
Key Takeaways
AI models in finance require the same supply chain security rigor as traditional software
Regulatory compliance for AI extends beyond model accuracy to include data provenance and training transparency
Financial institutions can leverage open-source tools to meet stringent compliance requirements
DevOps practices must evolve to accommodate the unique challenges of AI/ML workloads
Cryptographic attestations provide the audit trail necessary for regulatory reviews
The convergence of AI and finance creates new attack vectors that traditional security tools cannot address
Watch the Full Presentation
45 minutes of insights on compliance
About the Speaker
About Cole Kennedy
CEO & Co-founder, TestifySec
Cole Kennedy brings a unique perspective to the intersection of finance, AI, and security. Before founding TestifySec, he led security initiatives at several major financial institutions, where he witnessed firsthand the challenges of securing AI systems in highly regulated environments.
His work focuses on making advanced security practices accessible to organizations of all sizes, with a particular emphasis on the financial services sector. Cole is a regular contributor to FINOS (Fintech Open Source Foundation) and actively participates in developing industry standards for AI governance.