Cybersecurity vendor CrowdStrike yesterday unveiled a generative AI technology that it says will make it easier for more users to gain insights into cyber threats and help security analysts hunt for threats more effectively.
Called Charlotte AI, it works a little like the now-famous ChatGPT in that it allows users such as IT helpdesk staff or CIOs to get quick answers by asking, for example, what risks they face with a new vulnerability.
The AI will also boost threat hunting, according to CrowdStrike, by helping to analyse the systems that are in place in an organisation’s digital infrastructure and revealing the risks involved.
This means IT staff without the same threat hunting skills as, say, a Tier 1 security operations centre analyst can level up their skills with the help of Charlotte AI, says CrowdStrike.
AI, to be sure, is not new to cybersecurity. In the constant cat-and-mouse game between the good and bad guys, AI has been used both in offence and defence in recent years.
However, generative AI is now able to take the data it ingests and come up with unique answers that were not possible with earlier versions. This means it can deliver valuable insights as more data is fed into the system.
Indeed, data is what makes the magic possible for any AI – something that CrowdStrike also emphasises.
Its Charlotte AI, it says, includes trillions of security events captured in the CrowdStrike Threat Graph, asset telemetry from across users, devices, identities, cloud workloads and CrowdStrike’s threat intelligence.
It also depends on human validated content, for example, in the threat hunting and security response actions that the security vendor takes on behalf of customers. In other words, the AI learns from the actions that human operators take to hunt down and neutralise a threat.
Charlotte AI will help users of all skill levels improve their ability to stop breaches while reducing security operations complexity, said Mike Sentonas, president of CrowdStrike.
“Our approach has always been rooted in the belief that the combination of AI and human intelligence together will transform cybersecurity,” he added.
