Built on IBM’s watsonx data and AI platform, IBM introduces cybersecurity assistant ‘Threat Detection and Response Services’ for businesses to identify, investigate, and respond to any critical cybersecurity-related threats.
IBM Threat Detection and Response Services can automatically escalate or close up to 85% of security alerts. Now, by combining existing AI and automation abilities with new generative AI technologies, IBM’s global security analysts can speed up the investigation of the remaining alerts requiring action. Specifically, the new abilities helped reduce alert investigation times by 48% for one client.
Mark Hughes, Global Managing Partner of Cybersecurity Services, IBM Consulting, said, “By enhancing our Threat Detection and Response services with generative AI, we can reduce manual investigations and operational tasks for security analysts, empowering them to respond more proactively and precisely to critical threats, and helping to improve overall security posture for clients.”
IBM Threat Detection and Response Services
Built into IBM’s Threat Detection and Response Services, the new capability cross-correlates alerts and enhances insights from SIEM, network, EDR, vulnerability, and telemetry to provide a holistic and integrative threat management approach.
It will also auto-recommend actions based on historical patterns of analyzed activity and pre-set confidence levels, speeding the client’s response times and helping to reduce attackers’ dwell time.
The Threat Detection and Response Services includes a generative AI conversational engine that provides clients and IBM security analysts with real-time insights and support on operational tasks.
In addition to responding to requests such as opening or summarizing tickets, the conversational feature can automatically trigger relevant actions, including running queries, pulling logs, command explanations, or enriching threat intelligence. By explaining complex security events and commands, theThreat Detection and Response Services can help reduce noise and boost clients’ overall SOC efficiency.
“This helps drive a cycle of increasingly accurate and rapid threat investigations, which is especially crucial today as businesses face a shortage of security resources and surplus in security risks and vulnerabilities,” said Craig Robinson, a Research Vice President for IDC’s Security Services Research Practice.
Built-in collaboration with IBM Research, the new IBM Consulting Cybersecurity Assistant takes advantage of IBM’s broader generative AI capabilities. It is built on the company’s Granite foundation models, refined for production within IBM watsonx.ai, and taps into IBM Watson Assistant for the conversational chat interface.
For More Information about IBM Threat Detection and Response Services Visit here.
