Merge pull request #54411 from ceperezb/CEPEREZB-ai-security-controls

update module

Author: Taojunshen

learn-pr/advocates/ai-security-controls/1-introduction.yml

@@ -3,11 +3,11 @@ uid: learn.ai-security-controls.introduction
 title: Introduction
 metadata:
   title: Introduction
-  description: Overview of the security controls that you can implement in AI systems to increase the security posture of AI environments.
-  ms.date: 03/06/2026
+  description: Introduction to AI security controls, including learning objectives and prerequisites.
+  ms.date: 04/24/2026
   author: ceperezb
   ms.author: ceperezb
   ms.topic: unit
-durationInMinutes: 1
+durationInMinutes: 2
 content: |
   [!include[](includes/1-introduction.md)]

learn-pr/advocates/ai-security-controls/2-review-ai-open-source-libraries.yml

@@ -3,11 +3,11 @@ uid: learn.ai-security-controls.review-ai-open-source-libraries
 title: Review AI open-source libraries
 metadata:
   title: Review AI open-source libraries
-  description: Learn about reviewing AI open-source libraries to ensure that they are secure and reliable
-  ms.date: 03/06/2026
+  description: Learn how to evaluate open-source AI libraries for security risks, including AI-specific supply chain threats like model provenance and serialization vulnerabilities.
+  ms.date: 04/24/2026
   author: ceperezb
   ms.author: ceperezb
   ms.topic: unit
-durationInMinutes: 4
+durationInMinutes: 5
 content: |
   [!include[](includes/2-review-ai-open-source-libraries.md)]

learn-pr/advocates/ai-security-controls/3-content-filters.yml

@@ -3,11 +3,11 @@ uid: learn.ai-security-controls.content-filters
 title: Content filters
 metadata:
   title: Content filters
-  description: Learn about content filters and how they can help you secure your AI systems
-  ms.date: 03/06/2026
+  description: Learn how content filters detect and block harmful content in AI systems, including input and output filtering pipelines and configuration strategies.
+  ms.date: 04/24/2026
   author: ceperezb
   ms.author: ceperezb
   ms.topic: unit
-durationInMinutes: 3
+durationInMinutes: 5
 content: |
   [!include[](includes/3-content-filters.md)]

learn-pr/advocates/ai-security-controls/4-implement-ai-data-security.yml

@@ -3,11 +3,11 @@ uid: learn.ai-security-controls.implement-ai-data-security
 title: Implement AI data security
 metadata:
   title: Implement AI data security
-  description: Learn about AI data security and how to implement it in your AI systems
-  ms.date: 03/06/2026
+  description: Learn about AI data security, including the four types of data in AI systems, agent identity management, and access control strategies.
+  ms.date: 04/24/2026
   author: ceperezb
   ms.author: ceperezb
   ms.topic: unit
-durationInMinutes: 2
+durationInMinutes: 6
 content: |
   [!include[](includes/4-implement-ai-data-security.md)]

learn-pr/advocates/ai-security-controls/5-create-metaprompts.yml

@@ -3,11 +3,11 @@ uid: learn.ai-security-controls.create-metaprompts
 title: Create metaprompts
 metadata:
   title: Create metaprompts
-  description: Learn about metaprompts and how they can help you secure your AI systems
-  ms.date: 03/06/2026
+  description: Learn how to design effective metaprompts (system prompts) as a security control, including role definition, safety rules, grounding instructions, and anti-manipulation techniques.
+  ms.date: 04/24/2026
   author: ceperezb
   ms.author: ceperezb
   ms.topic: unit
-durationInMinutes: 2
+durationInMinutes: 5
 content: |
   [!include[](includes/5-create-metaprompts.md)]

learn-pr/advocates/ai-security-controls/6-ground-ai-systems.yml

@@ -3,11 +3,11 @@ uid: learn.ai-security-controls.ground-ai-systems
 title: Ground AI systems
 metadata:
   title: Ground AI systems
-  description: Learn about grounding AI systems
-  ms.date: 03/06/2026
+  description: Learn how grounding reduces hallucinations and security risks by connecting AI responses to verified data sources through RAG and other techniques.
+  ms.date: 04/24/2026
   author: ceperezb
   ms.author: ceperezb
   ms.topic: unit
-durationInMinutes: 3
+durationInMinutes: 5
 content: |
   [!include[](includes/6-ground-ai-systems.md)]

learn-pr/advocates/ai-security-controls/7-implement-application-security-best-practices-for-ai-enabled-applications.yml

@@ -3,11 +3,11 @@ uid: learn.ai-security-controls.implementing-application-security-best-practices
 title: Implement application security best practices for AI enabled applications
 metadata:
   title: Implement application security best practices for AI enabled applications
-  description: Learn about application security best practices for AI enabled applications
-  ms.date: 03/06/2026
+  description: Learn how to apply application security best practices to AI-enabled applications, including secure SDLC, agent tool security, and monitoring.
+  ms.date: 04/24/2026
   author: ceperezb
   ms.author: ceperezb
   ms.topic: unit
-durationInMinutes: 2
+durationInMinutes: 6
 content: |
   [!include[](includes/7-implement-application-security-best-practices-for-ai-enabled-applications.md)]

learn-pr/advocates/ai-security-controls/7a-monitor-detect-ai-threats.yml

@@ -0,0 +1,13 @@
+### YamlMime:ModuleUnit
+uid: learn.ai-security-controls.monitor-detect-ai-threats
+title: Monitor and detect AI-specific threats
+metadata:
+  title: Monitor and detect AI-specific threats
+  description: Learn how to monitor AI systems for security threats including jailbreak attempts, prompt injection, and anomalous agent behavior.
+  ms.date: 04/24/2026
+  author: ceperezb
+  ms.author: ceperezb
+  ms.topic: unit
+durationInMinutes: 7
+content: |
+  [!include[](includes/7a-monitor-detect-ai-threats.md)]

learn-pr/advocates/ai-security-controls/8-knowledge-check.yml

@@ -3,47 +3,68 @@ uid: learn.ai-security-controls.knowledge-check
 title: Module assessment
 metadata:
   title: Module assessment
-  description: Display your knowledge
-  ms.date: 03/06/2026
+  description: Check your understanding of AI security controls including content filters, metaprompts, data security, and monitoring.
+  ms.date: 04/24/2026
   author: ceperezb
   ms.author: ceperezb
   ms.topic: unit
   module_assessment: true
-durationInMinutes: 3
+durationInMinutes: 5
 content: Choose the best response for each question. 
 quiz:
   questions:
-    - content: "What steps can you take to improve the data security of an AI enabled application?"
+    - content: "What steps can you take to improve the data security of an AI-enabled application?"
       choices:
-        - content: "AI systems should only be able to enact existing data security controls and use the access permissions of the user they're acting on behalf of."
+        - content: "Ensure the AI system only accesses data that the user it's acting on behalf of is authorized to see"
           isCorrect: true
-          explanation: "Access control decisions should never be devolved to an AI system."
-        - content: "Keep your AI enabled application isolated from the rest of your IT environment."
+          explanation: "Access control decisions should never be devolved to an AI system. The AI should operate under the user's permissions using delegated access or under its own least-privilege identity for background tasks."
+        - content: "Keep your AI-enabled application isolated from the rest of your IT environment"
           isCorrect: false
-          explanation: "Isolating an AI enabled application limits usability rather than improve data security."
-        - content: "Run your AI enabled application on premises rather than in the cloud."
+          explanation: "Isolating an AI application limits usability rather than improving data security. The correct approach is to apply proper access controls and identity management."
+        - content: "Run your AI-enabled application on premises rather than in the cloud"
           isCorrect: false
-          explanation: "Running an AI enabled application on premises requires you to create your own AI platform. This is not feasible for most organizations. It will also not improve data security."
-    - content: "What kind AI harms and attacks does a metaprompt help to mitigate?"
+          explanation: "Running on premises doesn't inherently improve data security and requires building your own AI platform. Proper access controls are effective regardless of deployment location."
+    - content: "What type of AI security issue does a metaprompt (system prompt) help mitigate?"
       choices:
         - content: "Model poisoning"
           isCorrect: false
-          explanation: "Metaprompts can't help mitigate model poisoning attacks."
-        - content: "AI overreliance"
+          explanation: "Metaprompts can't mitigate model poisoning because poisoning occurs during training, before the metaprompt is applied at inference time."
+        - content: "Jailbreaks and harmful content generation"
+          isCorrect: true
+          explanation: "A metaprompt defines behavioral guardrails that instruct the model how to respond and what to refuse, helping mitigate jailbreak attempts, harmful content generation, and prompt manipulation."
+        - content: "Network-level denial of service attacks"
+          isCorrect: false
+          explanation: "Metaprompts operate at the model behavior level and can't mitigate infrastructure-level attacks like denial of service."
+    - content: "You want to prevent your AI application from returning harmful content. What should you implement?"
+      choices:
+        - content: "Metaprompts only"
+          isCorrect: false
+          explanation: "While metaprompts help, they can be bypassed. Content safety filters provide an additional layer that evaluates both inputs and outputs against harmful content categories."
+        - content: "Content safety filters as part of a defense-in-depth approach"
+          isCorrect: true
+          explanation: "Content safety filters can be configured to detect and block harmful content categories. For best results, combine them with metaprompts and other controls for layered defense."
+        - content: "Application security best practices alone"
+          isCorrect: false
+          explanation: "General application security practices don't address the specific challenge of harmful AI-generated content. Content filters are purpose-built for this scenario."
+    - content: "Why is grounding an important security control for AI systems?"
+      choices:
+        - content: "It prevents all types of prompt injection attacks"
           isCorrect: false
-          explanation: "Metaprompts can't help mitigate overreliance on AI."
-        - content: "Jailbreaks"
+          explanation: "Grounding doesn't prevent prompt injection. It constrains the model to respond based on verified data, which reduces fabricated outputs and limits the scope of responses."
+        - content: "It reduces fabricated outputs by constraining responses to verified data sources"
           isCorrect: true
-          explanation: "A metaprompt is a set of natural language instructions that tell an AI system how to behave or not behave."
-    - content: "You want to restrict your AI application from returning content of a sexual or hateful nature, what would you implement to accomplish this goal?"
+          explanation: "Grounding connects AI responses to specific, verified data through techniques like RAG. This reduces the risk of fabricated outputs and helps keep responses within the intended scope."
+        - content: "It encrypts the model's training data"
+          isCorrect: false
+          explanation: "Grounding has nothing to do with encryption. It's about connecting model responses to verified, real-world data sources at inference time."
+    - content: "What is an AI-specific supply chain risk when adopting open-source AI libraries?"
       choices:
-        - content: "Metaprompts"
+        - content: "Open-source licenses are always incompatible with commercial use"
           isCorrect: false
-          explanation: "Metaprompts can't be configured to filter unwanted content."
-        - content: "Content safety filters"
+          explanation: "Many open-source licenses are compatible with commercial use. License compatibility should be verified but isn't an inherent blocker."
+        - content: "Pre-trained models included in libraries may contain backdoors or biased behavior that's hard to detect through code review"
           isCorrect: true
-          explanation: "Content safety filters can be configured to prevent an application from returning content of a sexual or hateful nature."
-        - content: "Application security best practices"
+          explanation: "Pre-trained models are a unique AI supply chain risk. A compromised model can contain backdoors that aren't visible in code review, making model provenance verification and scanning essential."
+        - content: "Open-source AI libraries can't be updated after deployment"
           isCorrect: false
-          explanation: "Application security best practices cannot prevent an AI application from returning content of a sexual or hateful nature."
-    
+          explanation: "Open-source libraries can be updated like any other dependency. The challenge is that AI libraries evolve rapidly, and pinning to older versions may mean missing critical security patches."

learn-pr/advocates/ai-security-controls/9-summary.yml

@@ -3,8 +3,8 @@ uid: learn.ai-security-controls.summary
 title: Summary
 metadata:
   title: Summary
-  description: A summary of information
-  ms.date: 03/06/2026
+  description: Summary of AI security controls covered in this module, including supply chain security, content filtering, data security, metaprompts, grounding, and monitoring.
+  ms.date: 04/24/2026
   author: ceperezb
   ms.author: ceperezb
   ms.topic: unit