P RE D I C T I V E I NTELLIGEN CE
that might take place within their
network day to day. These could include
hundreds of new devices signing up
to the network, from employee-owned
mobile phones to older temperate
sensors, newly connected as part of an
IoT strategy.
The scale of the challenge is often just
too vast when asking human IT teams
to manage the data being shared by
incoming and existing devices, which
can easily reach into the thousands for a
large enterprise. This is where machine
learning comes into its own.
Using machine learning for UEBA (user
entity and behavioural analytics), IT
managers can create standard profiles
for each device on the network. Sales
managers get access to Salesforce
anytime anywhere, finance teams get
access to financial information systems
using specific devices at specific
locations and so on.
The profile of each user becomes
quickly personalised and as soon
as a user or entity behaves in a way
that strays outside of their profile, the
machine sees it and raises the risk
score of that user or entity and may
accordingly send an alert, which in
many cases will require the user/entity
to re-authenticate. In the case of a
malevolent attack, the intruder will be
isolated from the rest of the network to
limit any potential damage that might
have occurred.
34
With AI-based
machine learning
introduced in the
workplace, security
teams stand to
benefit greatly.
Machines are capable of analysing
millions of individual packets of data
plus thousands of system logs and
possibly business context data (such as
HR records), making a truly individual
approach to security possible, which is
more than can be said for the ability of a
human IT team. With the machine doing
the brunt of the monitoring work within
the network, the human agent need not
intervene until an entity risk score gets
above the threshold. This automatic
monitoring offers IT staff exceptional
time savings, which means they can
get on with tackling other IT issues
throughout the organisation.
Security’s positive impact on
the workforce
With AI-based machine learning
introduced in the workplace, security
teams stand to benefit greatly. The
technology isn’t here to replace the
human element in security operations;
it will augment the human’s intelligence,
allowing staff to make better decisions
based on the quality of the actions
being proposed and the forensics
data being furnished. Permissions, for
instance, won’t be automated by artificial
intelligence; it will flag the request
to a human agent, who can use the
information gathered, and knowledge of
Issue 03
|
www.intelligentciso.com