Radiant Security emerged from stealth today to launch co-pilot tool for cybersecurity analysts that uses machine learning algorithms and other data science techniques to make it simpler to detect and thwart cyberattacks.
Orion Cassetto, head of marketing for Radiant Security, said the company’s co-pilot tool identifies anomalous behavior in IT environments via a summary that provides analysts with the context required to investigate threats and mitigate attacks in minutes.
For every malicious incident detected, the co-pilot automatically builds a customized response plan that includes recommendations for addressing those issues. The response can then be applied with a single click, or the tool can be configured to automatically apply it, noted Cassetto.
Other capabilities include dynamically triaging alerts based on maliciousness, investigating the root cause of incidents, reducing response time to minutes and managing workflows. In the longer term, the company may add additional generative AI capabilities, but its existing approach already provides summarization capabilities that are less costly to implement, said Cassetto.
The overall goal is to streamline threat hunting by making it easier to identify the root cause of issues and then automate remediation processes at a time when most security operation centers (SOCs) are short-staffed, he added. Today, it simply takes too long for understaffed cybersecurity teams to investigate threats and respond to a cyberattack, said Cassetto.
Most cybersecurity teams prefer to apply the remediations themselves, but as they gain trust in the tool, an increasingly larger percentage will opt to automatically apply them, he noted.
Given the current volume and level of sophistication of cyberattacks, it’s not possible for cybersecurity teams to be successful without help from AI. There simply are not enough cybersecurity professionals available to analyze all the potential threats to an organization.
AI won’t replace the need for cybersecurity professionals as much as it will even the odds. Initially, most cybersecurity professionals were skeptical of AI-based cybersecurity tools, but as advances continue to be made, interest is starting to rise, noted Cassetto.
Of course, cybercriminals are showing similar interest. Cyberattacks that leverage AI technologies are already making their presence felt, so cybersecurity teams are engaged in an AI arms race. The fundamentals of cybersecurity will remain the same, but the pace at which attacks are launched, detected and thwarted will soon be measured in minutes rather than hours and days.
In the meantime, cybersecurity teams should evaluate the aspects of their existing workflows that AI can automate to free up resources and respond to threats faster. After all, none of those threats are going away any time soon.
Recent Articles By Author