Can AI Help Government Win the Cybersecurity Wars? (Contributed)
State government security professionals receive hundreds of thousands, if not millions, of cybersecurity alerts every day. Each one may, or may not, represent a relevant threat. The rise in IT security problems has put a strain on government’s ability to defend itself. Traditional security information and event management (SIEM) technology collects security “events,” or occurrences of unusual activity, in the log records created by an organization’s applications and infrastructure.
Artificial intelligence and machine learning hold promise as effective techniques for sifting through the large volumes of security events logged by SIEM technology. These tools can augment existing security staff and safeguard the enterprise by dramatically increasing the chances that real threats will be detected more quickly.