IBM introduces generative AI cybersecurity assistant to speed up responses
IBM has bolstered its managed threat detection and response services with a new generative AI-powered cybersecurity assistant.
Built on IBM’s WatsonX data and AI platform, and into its TDR services, the cybersecurity assistant is expected to help IBM Consulting analysts speed up cybersecurity threat identification, investigation and response. The new tool will be part of IBM Consulting Advantage, the company’s AI services platform with purpose-built AI assets designed to help its consultants.
According to IBM, the cybersecurity assistant uses historical correlation analysis of similar threats and insights from SIEM, network, EDR, vulnerability and telemetry to provide consultants with a holistic view of threat activity specific to each client. By giving analysts access this data, the new tool can help them “better comprehend the issue and provide more context to investigations”, according to IBM.
At the same time, the assistant can auto-recommend actions based on historical patterns that have been analysed. IBM said it expects the speed and accuracy of the tool will improve over time as it continuously learns from investigations.
Tapping into WatsonX Assistant, the cybersecurity assistant also includes a generative AI conversational chat interface, which IBM touted can not only provide real-time insight and support to both clients and IBM analysts, but respond to requests such as opening or summarising tickets. It can run queries, pull logs and provide command explanations.
“As cyber incidents evolve from immediate crises to multi-dimensional and months-long events, security teams are facing the enduring challenge of too many attacks and not enough time or people to defend against them,” IBM Consulting cybersecurity services global managing partner Mark Hughes said.
“By enhancing our threat detection and response services with generative AI, we can reduce manual investigations and operational tasks for security analysts, empowering them to respond more proactively and precisely to critical threats, and helping to improve overall security posture for clients.”
Related reading
Aimee Chanthadavong
NEXT UP
James Frampton, Chief Revenue Officer at SugarCRM: “AI is a game-changer for sales, service and marketing”
We interview James Frampton, Chief Revenue Officer at SugarCRM a veteran of the technology arena, with over 23 years of ERP, CRM and IT Service Management experience.
IBM acquires Accelalpha, world’s biggest Oracle logistics practice
IBM has announced plans to snap up Oracle consultancy and services company Accelalpha
Why Rotterdam is a tech haven: a love letter from a startup
We reached out to Kees Wolters asking for a comment on Rotterdam as one of the best cities in Europe for tech workers – he sent us what amounted to a love letter to the city, which we decided to publish in full (with his consent), below.