Trend Micro this week announced a generative artificial intelligence (AI) tool. trend companionreduces effort by leveraging natural language to bring context to alerts and reduce the time needed to investigate incidents.
At the same time, Trend Micro is expanding its Trend Vision One cloud-native application protection platform (CNAPP). Add cloud risk management capabilitiesThis includes agentless vulnerability scanning tools and cloud security posture management (CSPM) and cloud infrastructure entitlement management (CIEM) capabilities.
The overall goal is to reduce the level of effort and stress that cybersecurity analysts encounter, while also making it easier to use the platform to thwart threats, said Shannon Murphy, global security and risk strategist at Trend Micro. The aim is to provide generative AI tools that are both cost-effective and low-cost. Based approach to maintaining cybersecurity.
For example, you can use Trend Companion to not only explain in natural language how complex scripts work, but also to summarize and put alerts into context. It can also be used to iteratively develop threat hunting queries using natural language. This feature can reduce incident response time by 30% and report generation time by up to 2 hours.
Meanwhile, Trend Vision One has been expanded to add attack surface management capabilities that previously would have required cybersecurity teams to obtain a separate set of tools, Murphy said.
It’s unclear how quickly organizations are adopting CNAPP to streamline cybersecurity. However, these platforms aggregate more data, making data recommendations and summaries more accurate. In the case of Trend Micro, the company has trained its own large-scale language models (LLMs) to ensure that data collected from around the world cannot be accidentally shared via public-generated AI services such as his ChatGPT. Murphy said.
The rise of CNAPP combined with generative AI is changing the way cybersecurity is managed. Many organizations today rely on multiple disparate tools, making it difficult to correlate alerts. As a result, cybersecurity teams often spend a lot of time determining the severity of an incident. Of course, the longer it takes, the more potential damage can be done.
In contrast, CNAPP fosters increased collaboration around a set of tools and capabilities that all have access to the same data. This reduces the time cybersecurity professionals spend bouncing back and forth between all the dashboards showing different tools, Murphy said.
The challenge, of course, is that replacing all these tools with CNAPP requires a significant investment, and many organizations that have spent years integrating disparate tools are hesitant. The problem is that these tools are also expensive to maintain and update over time. Therefore, organizations must determine which approach makes the most sense based on the total cybersecurity costs incurred.
On the other hand, what is certain is that cybercriminal adversaries are already making similar investments in automation and AI in hopes of overpowering the cybersecurity defenses most organizations currently have in place. It means that there is.
Recent articles by author