Why does the future of cybersecurity require the combined efforts of humans and AI?
.Mayank Singh
Global Cyber Security Officer | Cybersecurity Strategist, Leader and Advisor | SANS LDR 514 | ISA/IEC 62443 | LI ISO 27001 | CISM | CRISC | SAFe? 6 Agilist
In the new era, high technology is more and more developed. Friends see a lot of important news about technology. We should also use a lot of these high-tech things in our lives. What should friends pay attention to? Today, I want to share my knowledge about technology with you. I hope you will like it.
As we look to the future of cybersecurity, we must consider the recent past and understand what the pandemic can tell us about our security needs.
When the bulk of the global workforce suddenly shifted to telecommuting in the spring of 2020, many cybersecurity platforms proved insufficient. The company found itself struggling to overcome the limitations of its own cybersecurity platform.
"Yesterday's approach to cybersecurity is not sufficient for today's threats"
Modern systems with self-learning AI capabilities have performed best in the face of the pandemic's impact on the network. For others, the only direct human intervention between human security at the enterprise and bad actors is waiting for a massive global event.
They quickly targeted government and hospital systems, as well as many commercial enterprises. Everything from ransomware to DDOS to phishing schemes has rapidly increased with the upheaval, so many companies have experienced this in the pre-pandemic period.
Many imperfect systems are augmented by some form of artificial intelligence, but they rely on what employees teach them. No one could have predicted such a drastic change in behaviour, but the trained system would sound an alarm, warning of unexpected behaviour, such as a sudden surge in remote connections.
Security analysts can't keep up with the constant false positives. Under typical network conditions, threat hunting can be time-consuming for teams. The pandemic has exacerbated this challenge.
Bad actors are on standby, waiting for an event that will affect thousands of global networks. The future of cybersecurity will depend on better artificial intelligence.
When companies examine their security systems, the question they need to answer is not "Should we bring AI to the boardroom" but "What type and how much AI do we need?"
领英推荐
A recent survey by WhiteHat Security revealed that more than 70% of respondents believe that AI-based tools help improve efficiency. More than 55% of routine tasks have been replaced by AI, freeing analysts up to work on tasks in other departments.
However, not all businesses or employees are excited about the prospect of adding more AI, especially one that requires less intervention. It's an understandable response—employees worry that AI will take their jobs.
Lonely AI is not the answer
Versatile human employees are not only part of self-learning AI solutions, they are also integral. Respondents to the Whitehart survey believe the importance of creativity and experience is critical to ensuring adequate safety.
A combined approach appears to be the most likely and reliable cybersecurity approach in the future. Security teams that incorporate artificial intelligence to handle day-to-day tasks and reduce overall issues such as false positives and focus on the human element will achieve better results.
A third wave of self-monitoring AI platforms can handle more subtle anomalous network activity. When the shift to telecommuting hit these networks, self-learning AI quickly re-established the "new normal." Instead of triggering hundreds of false positives, these systems quickly adjust and start looking for behaviour that doesn't imply a new frame of reference.
Meanwhile, security analysts can focus on other ways to close the holes created by the pandemic. Human qualities are critical to the success of cybersecurity.
For teams facing unprecedented challenges today, creative problem solving has never been more important. Qualities such as intuition and experience-based decision-making are so precious that even the most advanced AI cannot replace them.
What machines can do is the important and delicate work of professionals who enhance human safety. Talented security analysts waste a lot of time sifting through false positives and dealing with many other common tasks, all while keeping an eye on the network.
Tools that reduce manual intervention can also reduce errors and increase employee satisfaction. Machines can never fully replicate or take over the work done by security experts, so it is important for companies to find a security platform that emphasizes the talents of human security analysts. Security teams that view AI as part of a complete and multifaceted approach will benefit the most from these improvements.