AI-Automated Cybersecurity: What to Automate? – KDnuggets #Imaginations Hub

AI-Automated Cybersecurity: What to Automate? – KDnuggets #Imaginations Hub
Image source -

Picture by Editor


Let’s face it: Whereas some IT professionals could have a knee-jerk response in opposition to AI due to the present hype, it’s only a matter of time earlier than AI turns into embedded into many every day enterprise processes, together with cybersecurity controls. However now, when this expertise continues to be younger, it may be obscure the true implications and challenges of AI automation.

This text debunks a few widespread myths about how AI can improve cybersecurity and gives IT and cybersecurity leaders with suggestions on how one can make knowledgeable selections about what to automate. 



Don’t purchase into the parable that AI goes to exchange all of your staff. Even when that have been attainable, we as a society should not prepared for that leap. Think about boarding a jet and noticing that no human pilot ever enters the cockpit previous to departure. Little question there could be mutiny on board, with passengers demanding {that a} pilot be current for the flight. As efficient because the autopilot operate is, it has its limitations, so individuals nonetheless need a human in cost. 

Certainly, we didn’t see human personnel purged again when the economic revolution took maintain. Whereas equipment did take over parts of guide labor, it didn’t exchange the people themselves. Reasonably, the machines introduced better effectivity, predictability and consistency to the manufacturing course of. In truth, new jobs and even new industries requiring new abilities and better range have been born. Equally, AI will deliver new ranges of effectivity, scalability and accuracy to enterprise processes, and in addition create new alternatives and rework the labor market. In different phrases, you’ll nonetheless want cybersecurity personnel, however they are going to be upskilled by AI help. 

One other necessary false impression is that AI automation will inevitably cut back prices. This will sound acquainted; the identical was stated in regards to the cloud not too way back. Organizations that migrated their datacenters to the cloud discovered that whereas the OPEX value construction of the cloud has benefits over conventional CAPEX expenditures, the ultimate prices are related for giant environments, partly as a result of extra refined methods require extra expert (and costly!) expertise. Likewise, automation will change the distribution of prices, however not the general prices. 

Lastly, a completely automated AI-driven safety resolution is typically seen as a fascinating purpose. In actuality, it’s a pie-in-the-sky dream that raises questions of belief and auditability. What if that automation malfunctions or turns into compromised? How do you confirm the outcomes are nonetheless aligned with the enterprise targets? The reality is that we’re within the early phases of this new AI automated paradigm, and nobody really understands how AI automation could be exploited in the future from a safety perspective. AI and automation aren’t silver bullets (nothing is).



Sure processes are higher fitted to automation than others. Right here is an efficient three-point evaluation that may enable you resolve whether or not a safety course of is appropriate for automation:

  • The method is repetitive and time consuming when carried out manually. 
  • The method is sufficiently nicely outlined that it may be was an algorithm.
  • The outcomes of the method are verifiable, so a human can decide when one thing is fallacious.

You don’t need your costly safety expertise doing issues like pouring over safety logs, correcting misconfigurations or decoding prescribed metric alerts. By equipping them with AI-driven safety instruments, you may improve their visibility, increase their understanding of various threats and expedite their responsiveness to assaults. 

Extra broadly, think about how skilled sports activities groups are investing in expertise to enhance the efficiency of their athletes. Equally, it’s essential present your safety groups with the automated instruments they should up their sport. For instance, the insider risk is a big danger, however it’s virtually inconceivable to observe over each person within the firm, and rogue staff are sometimes solely evident after they have already brought about a minimum of some injury. AI-based options will be way more environment friendly in decreasing this danger: A person and entity habits anomaly (UEBA) detection resolution can spot refined adjustments in a person’s information entry patterns and variations between their habits in comparison with their friends, each of which sign a possible danger that requires immediate evaluation. 

One other space the place AI can take your crew’s capabilities to an entire new degree is risk searching. Automated options can determine extra precisely traces of assaults that will have been thwarted by your safety mechanisms and examine them to your risk intelligence. These could also be indicators of a bigger assault and you may get higher ready for it. 



ChatGPT, Bard and 1000’s of different superb new apps give executives the chance to expertise AI in motion. Working with their safety groups, they will discover potential functions for the expertise. However as an alternative of blindly charging ahead, it’s very important to totally assess which processes make sense to automate. This due diligence will assist IT leaders make sure that the dangers of a proposed new expertise doesn’t exceed its advantages.

Ilia Sotnikov is Safety Strategist & Vice President of Consumer Expertise at Netwrix. He’s liable for technical enablement, UX design, and product imaginative and prescient and technique.

Related articles

You may also be interested in