adv

Managing threat intelligence in an increasingly challenging landscape

He used WannaCry as an example. Getting reports to know about the malware doesn't work. It only helps when a company precisely knows what to do immediately to stop the attack. 

“If you have to take human hours to understand what to do, the amount of cleanup you have to do grows every hour because more machines get infected," he said.

IBM Watson for cyber security offers context relevant threat intelligent insights for SOC and security analysts to defend against cybercrimes, according to him.

With cognitive analytics capability, Watson is able to ingest and digest unstructured threat intelligence to provide full context and scope of an attack. It is touted to be faster in analyzing threat intelligence and more accurate in discovering actionable insights than manual threat investigations.

“Watson helps identify whether a threat is real, how relevant it is to a company, its potential business or money impact, and whether a company has to act, how and when to carry out remediation,” he explained.

With this connection, security analysts in a company are able to shorten the period of time to act on threat intelligence insights to strengthen security. They can spend their time on other works.

Gigi Onag contributed to this article.



Comments