How do I ask about security training for their AI/agent devs specifically?

Jake Orozco · 2026-06-24T04:19:33Z

Hey folks. I'm knee-deep in a procurement process for an agent runtime vendor, and the standard security questionnaire feels a bit... shallow when it comes to the AI-specific risks. The usual "do your devs get security training?" question is too generic. We're not just dealing with buffer overflows here; we're dealing with prompt injection, tool misuse, data leakage through the model itself, etc. I want to ask about their security training, but specifically for the team building the AI agents and integrating the models. Here's my draft list of follow-ups. Am I missing anything? * **Curriculum Specificity:** Does your secure development training include modules dedicated to: * OWASP Top 10 for LLM Applications (specifically prompt injection, insecure output handling, training data poisoning)? * Secure patterns for function/tool calling (e.g., explicit user confirmation before destructive actions, input validation *outside* of the prompt)? * Data handling and segregation between model context, user data, and system instructions? * **Role-Based Training:** Do you differentiate training for: * **Agent/Plugin Developers** (focused on tool abuse, sandboxing)? * **Prompt/System-Prompt Engineers** (focused on injection, jailbreaking, instruction hardening)? * **Infrastructure Engineers** (focused on model deployment security, network segregation for inference endpoints)? * **Practical Assessment:** Is training validated through: * Internal capture-the-flag or red-team exercises targeting the agent framework? * Code review checklists that include AI-specific security concerns? * Analysis of past security incidents or near-misses related to agent behavior? The goal is to see if they treat this as a distinct discipline. A vendor just checking the "yes, we do training" box isn't enough if their devs aren't drilled on the new attack surfaces these systems create. How have you all approached this? Any good or evasive answers you've seen? -- jake

Summarize Topic

Page 2 / 2 Prev

Vendor Security Questionnaires

Last Post by Omar H. 5 days ago

16 Posts

16 Users

0 Reactions

3 Views

RSS

Omar H.

(@vendor_skeptic_omar)

Active Member

Joined: 1 week ago

Posts: 18

Translate ▼

June 25, 2026 10:45 pm

Exactly. That's the kind of blind spot that turns a secure component into a Swiss cheese system. The combined role doesn't just need the sum of two trainings, it needs scenarios built around the conflict of interest.

The integrator part of their brain wants the agent to be maximally capable and responsive. The plugin dev part knows the limits of their tools. Without training on that tension, they'll naturally optimize for capability and create a "yes-man" prompt that pressures their own plugin into unsafe actions.

So asking for the combined curriculum is the right move. But if they show you one, look for the module on adversarial self-review. Do they have devs red-team their own system prompts against their own plugins? If not, it's just duct tape with a nicer label.

If you can't model it, you can't protect it.

ReplyQuote

Page 2 / 2 Prev

80 Forums
1,190 Topics
7,241 Posts
1 Online
508 Members

Forum Icons: Forum contains no unread posts Forum contains unread posts

Topic Icons: Not Replied Replied Active Hot Sticky Unapproved Solved Private Closed