How AI-Powered Risk Management Supports Cybersecurity
2024-2-13 23:0:28 Author: securityboulevard.com(查看原文) 阅读量:2 收藏

Artificial intelligence (AI) has been on the scene since the mid-1950s, but now regularly appears in headlines thanks to accessible applications like ChatGPT and the increased accessibility of generative AI.

Analysis using Signal monitoring found that the coverage of AI in top media titles rose 286% in the first half of 2023, based on a Signal search of articles where artificial intelligence was detected as a topic in publications identified as 50 of the most influential, comparing H2 2022 with H1 2023. In H2 2022, there were 2,743. in H1 2023, there were 10,594. Many of the headlines focused on the public’s concerns regarding the use of AI and other smart technologies. However, AI’s capabilities in the cybersecurity space represent an incredible opportunity to build trust in AI as a force for good in society. From rapid data processing to quickly identifying vulnerabilities, AI could, and indeed should, have an immensely positive impact on the future of cybersecurity – if organizations can implement it effectively and avoid the historical tendencies to bypass new technology until fully proven.

Many organizations have already recognized the potential of AI – 38% of people around the world say their job currently involves AI on a daily basis, according to BSI’s recent Trust in AI Poll. However, the speed of this shift suggests there may be a gap between business leaders’ quick embrace of AI, as shown in a recent Workday survey where 98% of CEOs say they would see some benefit from implementing AI capabilities, and the public’s still-developing trust in it, as seen in a recent study by KPMG that showed that only 28% of citizens are willing to trust AI systems in general.

At a time when cyber breaches remain a challenge for corporate America, organizations that understand the opportunities of AI and communicate its value to stakeholders effectively have an opportunity to seize its power and put themselves on a path to become more secure.

How AI Empowers Cybersecurity Best Practices

As AI rapidly becomes part of mainstream business, leaders who swiftly address workers’ initial uncertainties about its value stand to unlock its high potential more quickly. However, winning over workers may not be so simple.

According to BSI’s Trust in AI Poll, 47% of people said they would need to have complete or a lot of trust in AI to take on the responsibility of, for example, identifying unusual email activity. That figure indicates some hesitance on the part of workers to go all-in on AI but also provides an opportunity for leaders to cut through the noise with clear, effective communication about its benefits.

Selling security employees on AI’s benefits starts with demonstrating to them that automation can meaningfully improve their workload. Fortunately, one of the major selling points–the ability to quickly process massive amounts of data–can benefit many cybersecurity workers.

Data analysis is a common part of modern cybersecurity work. Most organizations now use security information and event management (SIEM) tools to keep a steady pulse on potential cybersecurity threats. When unrecognized activity takes place, such as unfamiliar login attempts and the unapproved deletion of files, businesses monitor these actions to determine whether it’s a sign of a larger potential risk. Depending on the company, millions of security log events can take place monthly–Microsoft reported in 2021 that they see more than 600 billion, for example–making it incredibly challenging for humans alone to keep track and identify which events indicate a real threat.

This is where the power of AI can streamline things. It can offer real-time data analysis to identify specific log events through algorithms that employees manage, acting as a cybersecurity gatekeeper that avoids muddling irrelevant and incorrect information with the credible and pertinent log events needed to survey potential cyber threats effectively. IBM recently reported that the average time to detect a data breach is more than six months, but AI and automation cut breach life cycles by 108 days–a massive difference that could enable organizations to pursue corrective measures before an incident becomes a crisis.

Critically, none of this analysis can happen without human security experts to oversee the AI’s decisions. To best harness AI and achieve consistently strong results, a balance between AI and human abilities is essential. Leaders can show their teams how AI can free them from menial data analysis and allow them to refocus on strategic priorities that can drive more significant long-term success for the organization. But instead of being replaced, employees’ roles may be reoriented and upskilled to account for a powerful new coworker. And if employees can buy into their new roles, what follows could be a better-equipped, more secure security team–one with the potential to grow even further, depending on the organization’s appetite for risk.

The Case for AI Investment

The potential benefits of AI are evident. Investing heavily in security automation may not be a top priority for every organization, and some organizations may still look at cybersecurity as an area to cut costs – a place to do the bare minimum and accept the risk that comes with an untimely breach.

Organizations that treat cybersecurity as a worthwhile, long-term investment can build greater trust with their people, partners and other stakeholders. It is also worth the effort and investment to build an internal security team that understands and can evolve alongside technology like AI, ensuring the organization is prepared for whatever challenges future cybercriminals may pose.

As we look to progress towards what is termed Society 5.0, a society that balances economic and technological advancement with AI technology, we can take advantage of its abilities in cybersecurity and many other areas. Investing in AI as a central player in cybersecurity is a chance for organizations to realize AI’s potential as a force for good, making us safer and more secure as individuals, organizations and society.


文章来源: https://securityboulevard.com/2024/02/how-ai-powered-risk-management-supports-cybersecurity/
如有侵权请联系:admin#unsafe.sh