Page 140 - CDM-CYBER-DEFENSE-eMAGAZINE-December-2018
P. 140
advantage by understanding the environment better than the adversary. A system that understands the
specifics of an environment can identify unusual behaviors with context that adversaries could only gain
with complete access to the full (and constantly updating) internal data feeds that the AI system is
provided to learn with.
Tactic #3: Grow Analysis Skills
To build trust, AI systems need to offer results that automate typical analyst workloads and explain the
results. Over time, this accelerates the skill and experience development of humans who use AI tools.
The talent shortage security teams face today means that AI tools must help fill skills gaps with
automation but then also provide interpretability and situational awareness that will help grow the skills
of security teams while also making day-to-day operations more efficient and impactful.
New Possibilities in Cybersecurity
In the face of unending network intrusions, organizations have adopted basic AI and machine learning
technology to help detect threats. IT security teams can get back the upper hand by implementing AI
and machine learning in a way that cuts down on the thousands of false positives. When this intelligent
technology understands the specific network environment and shares results that build trust among
human analysts, organizations will be able to act faster and more decisively against intruders.
About the Author
Dustin Hillard is the chief technology officer at eSentire. He leads the
research and development of automating security expertise with
adaptive machine learning. Dustin has published more than 30 papers
about building systems that deliver business value via large-scale data
processing and machine learning. Dustin Hillard can be reached online at
https://www.linkedin.com/in/dustinhillard/ and at our company website
http://www.esentire.com
140
