COMMENTARY. Ever since large language models like ChatGPT burst onto the scene a year ago, there have been a flurry of use cases for leveraging them in enterprise security environments.
From the operational, such as analyzing logs, to assisting detection of phishing attacks, to the more mundane, like rewriting documentation.
While there's been a lot of focus on ChatGPT, I have been testing Google Bard for rewriting and simplifying old security documentation that needed a touch-up.
You'll be hard-pressed to find anyone who loves writing security policies.
As they form the skeleton of most enterprise security frameworks, they are quite an important bit of documentation.
Best Practices for Using LLMs to Write Security Docs First thing first: Remove any proprietary data or personally identifiable information from your documentation.
As policies are generally high-level, there shouldn't be much of this.
Next, write the prompts you'll feed into the LLM with the policies you want to update.
Now that you have your prompts, the LLM can start ingesting your policies or procedures.
Helpful Bard Features That Aren't in ChatGPT Google Bard has several useful features that are not available in ChatGPT. One, it understands that it's writing a security policy so, while it always follows the prompt's directives, it will also change suggestive language to authoritative language.
By clicking the button, you gain access to two alternative texts generated by your prompt.
You can move between the three drafts and pick the one that best suits your preference.
While ChatGPT can regenerate options in unitary fashion, it won't present them in the user interface like Bard does; you have to regenerate them individually.
This gives you options to make your document shorter, longer, simpler, more casual, or more professional.
Once you're done, you've effectively got a nice, shiny new security policy without superfluous language and that's readable to the common mortal.
You've also saved yourself a huge amount of time.
You can export it directly into Google Docs, copy it directly, or share it with a link.
This effectively compressed weeks' worth of work into a few hours with significant resource savings.
Most important, our policies are now readable and understandable to a layperson.
While I still had to review the policies at the end to tidy up sentence structure and formatting, I found that Google Bard is a very good companion for rewriting security documentation that, at this time, has several advantages over ChatGPT..
This Cyber News was published on www.darkreading.com. Publication date: Tue, 19 Dec 2023 18:00:06 +0000