Adrian Johnson
TLDR:
IBM has introduced a new Cybersecurity Assistant for its Threat Detection and Response Services powered by generative AI, aimed at accelerating and improving investigation and response to critical security threats. The tool is integrated into IBM Consulting’s threat detection and response practice and is part of IBM Consulting Advantage, a platform with purpose-built AI assets. The Cybersecurity Assistant enhances security operations, reduces alert investigation times, and provides real-time insights and operational task support. By analysing historical threat activity patterns, security analysts can be more proactive and precise in their responses to threats.
Full Article:
IBM has introduced a new Cybersecurity Assistant for its Threat Detection and Response (TDR) Services powered by generative AI (Gen AI). The tool, developed in collaboration with IBM Research, is designed to accelerate and improve the investigation and response to critical security threats. It is built on IBM’s watsonx data and AI platform and is integrated into IBM Consulting’s threat detection and response practice, as well as part of IBM Consulting Advantage.
The new Cybersecurity Assistant aims to reduce manual investigations and operational tasks for security analysts, empowering them to respond more proactively and precisely to critical threats. By harnessing existing AI and automation capabilities alongside new Gen AI, the Cybersecurity Assistant speeds up the investigation of alerts requiring action while cross-correlating alerts and enhancing insights from various security sources.
Key features of the Cybersecurity Assistant include:
- Accelerate threat investigations and remediation with historical correlation analysis
- Streamlined operational tasks with an advanced conversational engine
- Access to a timeline view of attack sequences for greater context
- Gen AI conversational engine providing real-time insights and operational task support
IBM’s TDR Services are designed to automatically escalate or close up to 85% of alerts, with the new capabilities reducing alert investigation times by 48% for one client already. By analysing historical patterns of client-specific threat activity, the Cybersecurity Assistant enables security analysts to be more proactive and precise in their responses.
IBM is committed to improving responsible AI systems and data governance, seeking to provide a safer foundation for global AI growth. The new Cybersecurity Assistant’s speed and accuracy are expected to improve over time, offering businesses a new level of insight into critical threats and benefiting from technology that continuously learns from client-specific actions.
Overall, the Cybersecurity Assistant aims to drive more accurate and rapid threat investigations, crucial in a landscape where businesses face a shortage of security resources and an abundance of security risks and vulnerabilities.
