Upgrade & Secure Your Future with DevOps, SRE, DevSecOps, MLOps!

We spend hours on Instagram and YouTube and waste money on coffee and fast food, but won’t spend 30 minutes a day learning skills to boost our careers.
Master in DevOps, SRE, DevSecOps & MLOps!

Learn from Guru Rajesh Kumar and double your salary in just one year.

Get Started Now!

Home Artificial Intelligence Marrying Security Analytics and Artificial Intelligence

Marrying Security Analytics and Artificial Intelligence

Artificial Intelligence · April 10, 2018 · 4 Comments

Source – cio.com

It’s hard to remember a time when cyber-based security threats were so few and far between that they could be easily identified and countered by well-trained IT security experts. Today, the volume and diversity of potential threats long ago outstripped the ability of human professionals to evaluate them unaided. Today, security pros rely heavily on a multiplicity of highly automated threat intelligence feeds and analytical systems.

Still, even sophisticated security incident and event management (SIEM) solutions can struggle to separate actual cyber threats from the millions – if not billions – of potentially relevant IT and networking events that even moderate-sized organizations log each day. To increase their odds of success, SIEM systems and other security monitoring and analytics tools are increasingly turning to a variety of artificial intelligence (AI) technologies.

Just how does it work?  Security teams can “teach” machines known cyberattack patterns, and the systems can then extrapolate from that foundation to automatically identify and flag new forms of potential attacks.

But SIEMs and other security information management systems (SIMS) aren’t just leveraging machine learning to augment their capabilities. The attack patterns used by machine learning are structured data that is relatively easy to identify and match. Another AI tool, natural language processing, can help security systems sort through unstructured data sources such as research articles, security bulletins, and blog posts for relevant information.

One SIEM solution that taps a range of AI technologies is IBM QRadar Advisor with Watson. This solution uses IBM Watson to apply cognitive reasoning to identify relationships among discovered threat entities, and to help bring high priority risks to the attention of security analysts.

Among its capabilities, the IBM SIEM solution uses natural language processing technology to find meaningful information from more than two million unstructured documents in Watson’s security database, according to Rohan Ramesh, senior product marketing manager for Watson for Cybersecurity.

IBM QRadar Advisor with Watson correlates unstructured information with the structured information the solution also collects, and uses a reasoning algorithm to build a hypothesis. “The system might tell a security analyst, ‘I believe this event is related to ransomware, and here’s the underlying evidence I’ve used to reach this conclusion,’” Ramesh explains.

Given the speed and volume of cyber threats today, and the significant business risks they pose, cybersecurity defenses must often act automatically to mitigate those risks until human analysts can weigh in. Well-designed AI-powered systems should be able to help reduce the danger of false positives, ultimately giving organizations greater confidence in their automated security solutions.

For now, solutions such as QRadar Advisor with Watson can greatly aid security pros as they continue to fulfill critical roles in the end-to-end cybersecurity process. “Watson provides augmented intelligence to help analysts make better decision more rapidly, Ramesh says.

aiuniverse

Related Posts

Artificial Intelligence

What is AIOps?

· August 28, 2023 · 0 Comment

AIOps, short for Artificial Intelligence for IT Operations, is a practice that combines artificial intelligence (AI) and machine learning (ML) technologies with traditional IT operations to enhance Read More

Read More
Artificial Intelligence

What is Natural Language Processing (NLP) tools?

· May 26, 2023 · 0 Comment

Introduction to Natural Language Processing (NLP) Tools If you’ve ever asked Siri a question or talked to Alexa, you’ve used Natural Language Processing (NLP) tools. In essence, Read More

Read More
Machine Learning

What is Machine Learning and what are the Types of Machine Learning Tools Available?

· May 25, 2023 · 0 Comment

What is Machine Learning? Machine Learning is a subfield of Artificial Intelligence that incorporates statistical models and algorithms to help computer systems learn from data and improve Read More

Read More
Machine Learning

What is an Autonomous System and what are Applications of Autonomous Systems?

· May 8, 2023 · 0 Comment

Introduction to Autonomous Systems Autonomous systems, once the stuff of science fiction, have become a reality in our world today. From self-driving cars to drones, robots, and Read More

Read More
Machine Learning

What is Predictive Analytics and what is the Types of Predictive Analytics Tools

· May 8, 2023 · 0 Comment

Introduction to Predictive Analytics Tools As businesses continue to collect vast amounts of data, it becomes increasingly challenging to make informed decisions that drive growth and improve Read More

Read More
Artificial Intelligence

What are Emotion Detection Tools and Why Emotion Detection Tools are Important?

· May 6, 2023 · 0 Comment

What are Emotion Detection Tools? Emotion detection tools are a type of technology that analyses human facial expressions, voice tone, and body language to determine the emotional Read More

Read More
Subscribe
Notify of
guest
4 Comments
Oldest
Newest Most Voted
Inline Feedbacks
View all comments
4
0
Would love your thoughts, please comment.x
()
x