EXPERT OPINION
Looking forward , a greater focus on scenario planning for unthinkable crises will help us better future-proof our institutions and interests .
appropriate containment and mitigation procedures begin as soon as possible .
What role do you think Artificial Intelligence ( AI ) and Machine Learning ( ML ) play in cybersecurity ? What role can they play in the next five years ? Do you think offensive use of ML will offset potential gains in security ? or not this happens in five years is anyone ’ s guess .
How do you weigh the tradeoff between ‘ tool sprawl ’ and managing dozens of different security dashboards versus single-vendor solutions that might not be as good in all security categories ? How do you consider the impact of management complexity ?
In many cases , organisations do not entirely leverage their investments in cybersecurity defence and visibility tools . The full capabilities of existing cyber defences may not be deployed and existing configurations might not be tuned appropriately . So , do that first .
On cybersecurity defence : if the digital estate is entirely cloud-based from a single provider , leveraging the native cloud provider ’ s cybersecurity defence capabilities to the greatest extent possible may make sense .
However , if the organisation ’ s architecture is hybrid cloud – or a mix of everything , including on-prem IT and OT , multiple cloud instances and Edge Computing – finding a single-vendor solution is likely impossible .
On cybersecurity visibility : developing a flexible security architecture that allows all security-relevant data to be centrally collected for cross-referencing , contextualisation and alerting will enable the SOC to be most effective
Artificial Intelligence and Machine Learning are indeed starting to play a role in cyber defence . Today , AI / ML is helping in two areas :
• Eliminating the ever-increasing false positives the SOC has to sift through to find the truly actionable alerts
• Improving the ability to detect and alert on anomalous behaviour or network activity
In the future , AI / ML will likely help cyber defenders even more in these two areas as the technology improves . Looking forward , Quantum Computing algorithms combined with AI and ML may make predictive cyber defence a true reality . This is based on the premise that Quantum Computing can represent several states at the same time – which will enable faster processing of related datasets and result in high-speed , high-fidelity threat predictions . Whether
42 www . intelligentciso . com