The Great AI Debate: Does It Belong in SIEM? | Dissecting the Impact of AI on Modern SIEM Solutio...
0Guests:
Mick Douglas, Founder and Managing Partner at InfoSec Innovations [@ISInnovations (https://twitter.com/ISInnovations) ]
On LinkedIn | https://linkedin.com/in/mick-douglas
On Twitter | https://twitter.com/bettersafetynet
Dinis Cruz, Chief Scientist at Glasswall [@GlasswallCDR (https://twitter.com/GlasswallCDR) ] and CISO at Holland & Barrett [@Holland_Barrett (https://twitter.com/Holland_Barrett) ]
On LinkedIn | https://www.linkedin.com/in/diniscruz/
On Twitter | https://twitter.com/DinisCruz
____________________________
Host: Sean Martin, Co-Founder at ITSPmagazine [@ITSPmagazine (https://twitter.com/ITSPmagazine) ] and Host of Redefining CyberSecurity Podcast [@RedefiningCyber (https://twitter.com/RedefiningCyber) ]
On ITSPmagazine | https://www.itspmagazine.com/itspmagazine-podcast-radio-hosts/sean-martin
____________________________
This Episode’s Sponsors
Imperva | https://itspm.ag/imperva277117988
Devo | https://itspm.ag/itspdvweb
___________________________
Episode Notes
In this episode of the Redefining Cybersecurity podcast, Sean Martin is joined by Mick Douglas and Dinis Cruz to delve into a debatable topic: The role and effectiveness of Language Model (LLM) AI in Security Incident and Event Management (SIEM) systems.
Mick, with a rich history in cybersecurity, contends that while AI has its place, he doesn't believe it belongs in the SIEM itself. In contrast, Dinis cites the potential of AI to make SIEMs more productive by cleaning up data, reducing noise, and improving signal value. They discuss the issues of handling vast data sets, the potential for AI to help identify and manage anomalies, and how to create learning environments within SIEM. However, concerns were also raised regarding false positives, trust issues with AI and the significant computational costs to implement and maintain these AI systems.
Key Questions Explored:
• Does AI belong in SIEM systems?
• What potential does AI bring to SIEM?
• What are the potential issues with implementing and maintaining AI in SIEM?
___________________________
Watch this and other videos on ITSPmagazine's YouTube Channel
Redefining CyberSecurity Podcast with Sean Martin, CISSP playlist:
📺 https://www.youtube.com/playlist?list=PLnYu0psdcllS9aVGdiakVss9u7xgYDKYq
ITSPmagazine YouTube Channel:
📺 https://www.youtube.com/@itspmagazine
Be sure to share and subscribe!
___________________________
Resources
Inspiring LinkedIn Post: https://www.linkedin.com/posts/mick-douglas_first-let-me-be-really-clear-for-the-near-activity-7146143942739124224-a4vl/
Inspiring Twitter Post: https://twitter.com/bettersafetynet/status/1740370001973154010
___________________________
To see and hear more Redefining CyberSecurity content on ITSPmagazine, visit:
https://www.itspmagazine.com/redefining-cybersecurity-podcast
Are you interested in sponsoring an ITSPmagazine Channel?
👉 https://www.itspmagazine.com/sponsor-the-itspmagazine-podcast-network