- ホーム
- > 洋書
- > 英文書
- > Computer / General
Full Description
Ship agentic AI systems that are secure, governed, and production-ready. Learn how to design bounded autonomy, harden tool use and memory, operationalize AI risk and security, and build the trust evidence enterprises demand, from prototype to deployment.
Key Features
Engineer bounded-autonomy agents with secure tools, memory, and control planes
Unify Responsible AI, AI SecOps, and AI RiskOps in one enterprise playbook
Use capstone labs, templates, and audit-ready artifacts to ship safer AI
Purchase of the print or Kindle book includes a free PDF eBook
Book DescriptionPrompt injection, tool misuse, memory poisoning, data exfiltration, and uncontrolled autonomy are not theoretical risks. They're active concerns for any team moving agents from prototype to production.
This hands-on guide shows how to build, harden, and operate agentic AI in enterprise environments. Adnan Masood and Heather Dawe bring together agent engineering, security, and governance in one practical playbook.
You'll classify agent use cases by risk, autonomy, and reversibility, design reliable agent loops with structured I/O and tool calling, ground actions with RAG and provenance controls, secure tools with least-privilege access and approval gates, and manage memory with redaction, rollback, and drift detection. The book also covers threat modeling, policy-as-code guardrails, red teaming, observability, incident response, and alignment with emerging standards and regulation. A running capstone project — CASA((Customer-facing Agentic Service Assistant) — and the TrustStack AI GRC toolkit make each pattern practical and reusable across enterprise scenarios.
By the end, you'll have the architecture patterns, security controls, operational playbooks, and governance artifacts to deploy enterprise-grade AI agents with stronger trust, lower risk, and production-ready confidence.What you will learn
Classify agent use cases by risk, autonomy, and reversibility
Build robust agent loops with structured I/O and tool calling
Ground agents with RAG, provenance tracking, and retrieval guardrails
Secure tool use with least privilege, sandboxing, and human approval gates
Deploy agents across Azure AI Foundry, AWS Bedrock, and Google Vertex AI
Threat-model and defend against injection, hijacking, exfiltration, and poisoning
Produce audit-ready governance artifacts mapped to the EU AI Act, NIST AI RMF, ISO 42001, and SSPA/SCITT supply-chain standards
Who this book is forThis book is for enterprise AI and LLM engineers, software developers building assistants and agents, solution and enterprise architects, platform and LLMOps/MLOps engineers, security and AppSec teams, product managers, and governance, risk, compliance, legal, privacy, model risk, and audit professionals responsible for deploying generative AI safely in production. Readers should be comfortable with Python, APIs, and basic ML concepts, and have some familiarity with LLM application patterns such as prompting, RAG, and tool calling.
Contents
Table of Contents
The Agentic Shift in the Enterprise
Anatomy of LLM Agents with Python Examples
Planning, Decomposition, and Control of Autonomy
Grounding with Retrieval (RAG), Data Governance, and Provenance
Tools, Sandboxing, and Least Privilege
Safe Memory, Privacy, and Learning Without Drift
Agentic Threat Modeling & Abuse Cases
Defensive Architectures: Guardrails, Policy-as-Code, and Safety Agents
Red Teaming, Security Testing, and Frontier Risk Controls
Responsible Agent Objectives: Harms, Fairness, and Accountability
Explainability, Transparency, and Audit Trails for Agents (From Model Cards to System Cards)
AI RiskOps / AI SecOps for Agent Lifecycles
Model, Prompt, Tool, and Data Governance at Scale
Regulatory & Standards Alignment for Agentic AI
Production Deployment: Observability, Cost, and Reliability
Content Provenance, Authenticity, and Trust in Agent Outputs
Implementation Playbooks, Operating Model (AI STEPS FORWARD 2.0), and the Road Ahead
