Cybersecurity teams often face tough choices, and there’s typically much at stake. For example, do you rely on already overworked team members to manually sift through threat alerts but run the risk of someone missing an important connection or trend? Or, consider this situation: You deploy an automated solution to generate attack alerts, only to get bogged down in a torrent of warnings. Many may be false positives that, again, waste the team’s time.
No matter the choice, many organizations’ security measures have a lot of gaping holes. If your business is undergoing its digital transformation, those gaps may be holding you back. And you’re not alone: Data security is often listed as the single biggest challenge to driving digital change.
Fight Fire with Fire to Improve Data Security
Security threats are evolving and growing increasingly sophisticated. Artificial intelligence (AI) and botnets are behind some of the slickest attacks. The best way to stay a step ahead? Arm your systems and infrastructures with the same smarts and efficiency.
Why? On a security level, AI’s value lies in its speed, repetition, and accuracy. Machine learning ensures algorithms get smarter over time, learning from wins and misses. Additionally, it can help by assessing risk and uncovering warnings faster than humans can. (And given the IT security talent shortage, that extra help can’t hurt.) Coupled with security tools, AI can perform the repetitive, tedious tasks, minute by minute. This reduces security teams’ “low-brain, high-repetition” tasks, like reviewing system alerts, and frees up some of their time. Lean teams can tackle more strategic projects, like proactive “threat-hunting” exercises that detect gaps in security.
AI on the Offense: Data Protection that Tells You What’s Wrong
AI can support a proactive posture for data security. This puts you on the offense, not just the defense. With AI behind data storage, you don’t have to sit and wait for attackers to get a foot in the virtual door—you can get clues about what they’re up to.
Security and AI applications together make the secret sauce for better offensive data security with:
- Big-data analytics: These tasks tend to fall in the category of “needle in a haystack” applications. Think scanning millions of data points for outliers and anomalies, like large file transfers or suspicious uploads.
- Predictive analytics: AI can predict or forecast the likelihood of future events based on analysis of past trends and events. For example, AI may be able to predict which assets attackers are most likely to strike.
- Behavioral analytics: AI’s unbiased approach can spot behavioral patterns such as repeated login attempts. What’s the probability that a certain user’s behavior is malicious? AI can analyze it quickly and with great accuracy. Once those outliers are located, a human can step in and do the critical thinking.
In our survey of IT decision makers across the United States, we heard loud and clear that predictive support goes a long way toward simplifying technology management tasks. In the survey, 48% of respondents cited “ability to train staff on new technology” as an obstacle to digital transformation while 39% cited “complexity of data management” as an obstacle.
These are issues that AI can help address. AI tools can reduce the need to train security teams on complicated and tedious monitoring tasks. Abstracting away complexity is another boon—especially for stressed security teams.
AI on the Defense: Security that Can Keep Pace
But don’t underestimate your defense—something many organizations already admit hasn’t kept pace with the complexity of their IT environments. Here’s where AI adds another layer of support.
AI-enabled workflows can help security teams identify threats sooner and recover faster, which can reduce costs incurred. AI is the driving force behind email filters that can flag suspicious messages that may contain ransomware’s most popular vehicle: phishing attacks. If attackers do manage to breach systems, there are other ways AI can defensively swing into action.
Full backups and snapshots on autopilot keep accurate, up-to-date backups on standby. Once you kick into recovery mode, automated workflows can manage some of the time-consuming tasks associated with triage, investigation, and containment processes. High-speed forensic analysis can locate indicators of compromise so you can restore backups that are clean.
AI can also help fortify one of the weakest links in the defensive security chain: ineffective passwords. By automating the enforcement of better passwords and more frequent password updates—privately and securely—AI-powered password managers can reduce attacks at this often overlooked level.
Safeguarding Data in the Cloud
As enterprises move data to the cloud, expect attackers to follow. In a Sophos survey on the state of ransomware, IT managers whose businesses suffered ransomware attacks said that 41% of data was on-premises or in the private cloud; 35% said data was solely in the public cloud; and 24% said the ransomware attack included a combination of private and public cloud data. All told, nearly 6 in 10 successful attacks (59%) included data in the public cloud—an indication that cloud data storage needs better proactive and reactive defenses.
Enterprises would be wise to start at ground zero for data security—data storage—with the latest in AI and automation. This isn’t just simple redundancy. It’s next-level technology that marries AI to data storage to deliver always-on protection. It’s something we’ve built right into Pure data storage solutions. Pure1 Meta® is the AI-driven, full-stack analytics platform behind Pure’s self-driving storage management system. Machine learning and the accumulated real-time data from a global fleet of arrays provide predictive analytics at scale. And with Meta, it’s possible to forecast and troubleshoot data storage issues before they occur.
When it comes to IT security, simplicity should be table stakes. Security teams are chronically overwhelmed, no matter what approach they take to stay on top of alerts. But if they can uncomplicate security in any way—for example, by using AI and automated alerts to get tip-offs to problems—they can streamline security tasks and keep data safe from attacks.
- According to the 2021 ITDM Thought Leadership Research report from Pure Storage and Bredin, 67% of IT decision makers said that data security and compliance are the biggest risks to building a digital business.
- https://www.forbes.com/sites/emilsayegh/2020/09/22/as-the-end-of-2020-approaches-the-cybersecurity-talent-drought-gets-worse/?sh=1f0c85645f86
- Bredin 2020 IT Survey.
- https://www.veritas.com/content/dam/Veritas/docs/ebook/V1117_GA_EB_2020-ransomware-resiliency-report_EN.pdf
- https://www.securitymagazine.com/articles/91572-weak-passwords-caused-30-of-ransomware-infections-in-2019