Cisco has unveiled the launch of a new AI assistant to support security practitioners and automate key processes.
The Cisco AI Assistant for Security marks a “major step in making artificial intelligence pervasive in the security cloud”, the tech giant said.
The AI tool is capable of understanding and supporting security event triage practices, assisting in policy design, and conducting root cause analysis in the wake of an incident.
The firm said this will enable security practitioners to make more informed decisions, augment capabilities and automate complex tasks in their daily workflows.
In addition, the tool is trained on one of the largest security-focused datasets in the world, drawing upon more than 550 billion security events each day spanning the web, email, endpoints, networks, and applications.
Jeetu Patel, executive vice president and general manager of security and collaboration at Cisco, said the launch of the new AI tool will greatly enhance security practitioner efficiency and reduce workloads.
“Today’s announcement is a monumental step forward,” he said. “This advancement will help tip the scales in favor of defenders, empowering customers with AI built pervasively throughout the Cisco Security Cloud.”
“To be an AI-first company, you must be a data-first company. With our extensive native telemetry, Cisco is uniquely positioned to deliver cybersecurity solutions that allow businesses to confidently operate at machine scale, augmenting what humans can do alone.”
Cisco AI Assistant for Security: Key features
Key features and capabilities of the AI tool outlined by Cisco include automated firewall support. The assistant will first go live within the firm’s cloud-delivered Firewall Management Center and Cisco Defense Orchestrator.
This will enable administrators to use natural language to curate policies and establish rule recommendations, the firm said. In addition, admins can use the tool to rectify misconfigured policies, improve workflow visibility, and streamline configuration activities.
"Using natural language, an administrator can iterate with the AI Assistant to do things like discover and identify all the policies that control access to an application, define a new policy or rule for the administrator, and implement the policy," Patel said in a blog post.
"The AI Assistant can also identify duplicate or misconfigured security policies from amongst thousands of existing policies and make recommendations for resolving them."
The AI assistant will also help users to improve data center traffic encryption processes through the Encrypted Visibility Engine.
RELATED RESOURCE
Discover how IBM watsonx.data supports a range of current standard technologies for moving, handling, and accessing data
DOWNLOAD NOW
The service analyzes billing of samples, including sandboxed malware samples, to establish if encrypted traffic is transporting malware. AI tools will support administrators using the platform, and improve broader operational security, Cisco said.
“Most data center traffic today is encrypted and the inability to inspect encrypted traffic is a key security concern,” the firm said. “Decrypting traffic for inspection is resource-intensive and fraught with operational, privacy and compliance issues”
AI security tools experiencing a renaissance
Cisco is the latest in a slew of security firms to provide AI-powered tools so far in 2023. Microsoft unveiled its Security Copilot for customers in March, and was hailed as a potential game changer by industry stakeholders.
In May, CrowdStrike unveiled a new generative AI security tool aimed at driving efficiency for frontline practitioners.
The Charlotte AI security assistant operates across the company’s suite of security and threat intelligence platforms to help analysts identify emerging threats and bolster productivity.
The tool provides security analysts with real-time, prompt-based insights into security threats and provides natural language recommendations to mitigate risks.
-
DocuWare CEO Michael Berger on the company’s rapid growthNews ChannelPro sat down with DocuWare CEO Michael Berger to discuss the company's rapid growth and channel strategy.
-
Seized database helps Europol snare botnet customers in ‘Operation Endgame’ follow-up stingNews Europol has detained several people believed to be involved in a botnet operation as part of a follow-up to a major takedown last year.
-
So long, Defender VPN: Microsoft is scrapping the free-to-use privacy tool over low uptakeNews Defender VPN, Microsoft's free virtual private network, is set for the scrapheap, so you might want to think about alternative services.
-
Hackers are on a huge Microsoft 365 password spraying spree – here’s what you need to knowNews A botnet made up of 130,000 compromised devices has been conducting a huge password spraying campaign targeting Microsoft 365 accounts.
-
Everything you need to know about the Microsoft Power Pages vulnerabilityNews A severe Microsoft Power Pages vulnerability has been fixed after cyber criminals were found to have been exploiting unpatched systems in the wild.
-
Microsoft is increasing payouts for its Copilot bug bounty programNews Microsoft has expanded the bug bounty program for its Copilot lineup, boosting payouts and adding coverage of WhatsApp and Telegram tools.
-
Hackers are using this new phishing technique to bypass MFANews Microsoft has warned that a threat group known as Storm-2372 has altered its tactics using a specific ‘device code phishing’ technique to bypass MFA and steal access tokens.
-
Cisco claims new smart switches provide next-level perimeter defenseNews Cisco’s ‘security everywhere’ mantra has just taken on new meaning with the launch of a series of smart network switches.
-
Cisco is jailbreaking AI models so you don’t have to worry about itNews Cisco's new AI Defense security solution helps organizations shore up LLM security by identifying potential flaws.
-
Cisco dispels Kraken data breach claims, insists stolen data came from old attackNews Cisco has refuted claims it has suffered a data breach after the Kraken threat group posted stolen data online.
