The US Army is taking steps to enhance cybersecurity and prepare for the integration of artificial intelligence (AI) on its network. To achieve this, the Army has reduced the number of networks and expanded its big data capabilities. The service has doubled the amount of network endpoints contributing log data in real-time into the big data platform called Gabriel Nimbus, which is based on the Defense Information Systems Agency’s open-source system. This platform allows for data ingest, correlation, and visualization infrastructure, and can be installed across multiple servers within a few hours.
The Army is also increasing the number of data feeds and is planning to discuss the integration of additional data feeds to further enhance the capabilities of analysts. The service has doubled the amount of storage and the number of analysts using the big data platform. By maturing the data available on this platform, the Army aims to leverage automation and AI in its network defense.
AI is seen as having great potential in continuous network and system monitoring. The Army plans to utilize AI to automate processes based on known adversary tactics, techniques, and procedures. The integration of AI into the network will also be beneficial as the Army moves more applications and services into the cloud.
The US Army Cyber Command is in the early stages of building an AI system for continuous cyber monitoring. The goal is to enhance visibility and security using existing data platforms. Command officials are working with the Assistant Secretary of the Army for Acquisition, Logistics and Technology on security and continuous monitoring of weapon systems.
Through the implementation of big data capabilities and the integration of AI, the Army aims to achieve improved network visibility and enhance its cybersecurity posture.