Simbian today launched a cybersecurity platform that leverages generative artificial intelligence to automate tasks that can increase in complexity as the tool learns more about the IT environment.
Fresh off raising $10 million in seed funding, Simbian CEO Ambuj Kumar said the company has trained a large language model, dubbed TrustedLLM, to create an AI co-pilot that can summarize events, suggest remediations and automate tasks.
Cybersecurity teams can determine how much faith they want to place in a TrustedLLM over time, as it continuously observes how an IT environment is evolving.
The more the LLM learns about the environment, the more complex the tasks the platform can autonomously perform, said Kumar.
As the reasoning engines embedded within LLMs become more advanced, generative AI platforms are increasingly able to combine a series of steps to automate a task.
Cybersecurity teams can use a natural language interface to assign Trusted LLM platform to find and remediate a vulnerability anywhere it exists that might require it to generate code to enable multiple cybersecurity tools and platforms to work in concert with each other to complete a task, said Kumar.
Over time, each cybersecurity professional will become more of a supervisor of tasks executed by a co-pilot, Kumar added, rather than someone who has to manually perform each task themselves.
Less clear is to what degree a cybersecurity expert will be required to supervise a co-pilot, as generative AI continue to make managing cybersecurity easier for any IT professional.
Unlike general-purpose LLMs, the Trusted LLM has been trained on a narrow set of cybersecurity data to eliminate common hallucinations like those regularly encountered with platforms such as ChatGPT, said Kumar.
That approach also ensures that data shared with the LLM isn't inadvertently going to be used to train an LLM that might be accessible to anyone, he added.
Given the chronic shortage of cybersecurity expertise, it's only a matter of time before more organizations rely on AI to automate tasks.
There are, of course, any number of existing automation platforms for cybersecurity.
They all require cybersecurity teams to master some level of programming, to varying degrees.
By exposing a natural language interface, Generative AI platforms eliminate that requirement so the number of workflows that can be automated should continue to increase.
As more of those workflows are automated, cybersecurity will steadily improve as organizations can eliminate vulnerabilities before cybercriminals are able to exploit them.
Cybersecurity teams should also be able to better contain any damage inflicted, as they can respond more adroitly as soon as a breach is discovered.
The overall cybersecurity return on investment should also improve, because small teams can maintain cybersecurity across highly distributed computing environments.
It's not likely AI is going to eliminate the need for cybersecurity professionals, but their roles are about to change.
Hopefully, less time will be spent performing the manual tasks that leads to higher turnover rates among cybersecurity professionals.
Most would prefer to spend their time eliminating threat vectors and thwarting attacks in progress.
This Cyber News was published on securityboulevard.com. Publication date: Thu, 11 Apr 2024 21:43:03 +0000