New Delhi : As cyberattacks become more frequent and threatening, there is growing interest in leveraging more mature artificial intelligence (AI) and machine learning (ML) models. Last week Microsoft announced a new product called Security Copilot. It leverages OpenAI’s generative AI model GPT-4 to assist security professionals. In an interview, Terence Gomes, Country Head of Security at Microsoft India, discusses the difference generative AI can make to cybersecurity. Edited excerpt:
As cyberattacks become more frequent and threatening, there is growing interest in leveraging more mature artificial intelligence (AI) and machine learning (ML) models. Last week Microsoft announced a new product called Security Copilot. It leverages OpenAI’s generative AI model GPT-4 to assist security professionals. In an interview, Terence Gomes, Country Head of Security at Microsoft India, discusses the difference generative AI can make to cybersecurity. Edited excerpt:
Many modern threat intelligence solutions use AI. What added value can the cybersecurity industry get from generative AI?Mainstream AI is used for analytical baselines. AI and ML are involved behind the scenes in nearly every security platform where many baselines occur and anomalies are detected. If you have 20 different alerts and they are all related to one incident, use AI to collapse them all into one incident. With generative AI as a co-pilot, it can do even more. With generative AI, you can access and feed your queries and get answers back quickly. Therefore, it helps in better research and faster analysis. It also encourages you to take action. Generative AI helps scale what humans can do at the speed and scale of machines. As such, it is important in security protection, investigation, and response.
Hi!you are reading a premium article
Many modern threat intelligence solutions use AI. What added value can the cybersecurity industry get from generative AI?Mainstream AI is used for analytical baselines. AI and ML are involved behind the scenes in nearly every security platform where many baselines occur and anomalies are detected. If you have 20 different alerts and they are all related to one incident, use AI to collapse them all into one incident. With generative AI as a co-pilot, it can do even more. With generative AI, you can access and feed your queries and return answers quickly. Therefore, it helps in better research and faster analysis. It also encourages you to take action. Generative AI helps scale what humans can do at the speed and scale of machines. As such, it is important in security protection, investigation, and response.
How are security professionals reacting to Microsoft’s Security Copilot?Generative AI will be a game changer for the industry. Although not yet available to the public, there is a lot of interest in India. I’ve been in the industry for his 25 years and I can understand the frustration professionals have when dealing with security alerts and investigations, so I’m very excited. It usually takes him a day or two or more to look at various signals, manually pull out the information and try to make it work.What are the reasons for the skills shortage in cybersecurity? Do you think this problem will be solved anytime soon and can generative AI help?Generative AI seeks to optimize the human element that is still required. The shortage of human resources is expected to continue in the future. According to a report in India, he has created 1.5 million jobs in the cyber security sector. Globally, we have him analyzing 65 trillion signals per day. Last year he was 43 trillion, a few years ago he was 6 trillion. You can imagine the number of cyber signals we analyzed to provide our customers with insights. Attackers are also evolving and returning with new threats and approaches.
What role has regulation played in India in improving its security posture?Looking at regulatory posture, whether or not the Reserve Bank of India (RBI) has provided proactive guidance to banks, it has helped banks improve their security posture. Even the CERT-IN guidelines, which were written for large organizations, have helped drive a lot of awareness and management efforts and prioritization. This helps security personnel implement controls. Many organizations I have spoken to put a lot of effort in. When compared over a period of time, implementing all of these guidelines has Their posture has improved.