IBM has announced this week that Watson will work together with Cyber Security, combining the power of supercomputing as well as the advances in cognitive computing, in order to deliver a solution that cyber security experts and teams globally can benefit from to strengthen their defense against potential cyber-attacks.  

Top Examiner writes in an article that in an enterprise setup, the security operations centre does not only have to be concerned about shortage of staff, but equally estimating 200,000 pieces of security event data daily, according to an IBM research.

According to a Ponemon Institute report, an average enterprise spends more than 20,000 hours annually, on malware containment alone. “Combine this issue with the fragmentation of cyber security industry and we have a problem massive enough to crush even the best of SOCs under massive pressure”.

This is where IBMs Watson for Cyber Security can be of assistance, as the solution enhances analysts’ ability to operate more efficiently and accurately, and fill in gaps in the intelligence.

The machine detects connections between obscure data points that are impossible to detect for humans, and then enables enterprises to tackle cyber-security threats quicker and more confidently.

“Built on the IBM Security Operations and Response architecture, it integrates advanced cognitive technologies with leading security analytics solutions to understand and respond to sophisticated threats across cloud, networks, endpoints and users”.

Watson for Cyber Security will provide organisations with a stronger defence against cyber-attacks, as well as providing new insights to data, understanding of the data, and putting the security into context.

It will enable security analysts to more efficiently analyse and understand unstructured data before integrating it with structured data from numerous sources and locations.

“Cognitive security uses intelligent technologies such as machine learning and natural language processing to mimic the way the human brain functions”, Top Examiner writes. “It gets stronger over time, learning with each interaction and getting better at proactively stopping threats. In fact, a recent survey revealed a threefold increase in the percentage of companies implementing cognitive-enabled security solutions in the next two to three years”.

At the core of IBM’s new Cognitive SOC sits QRadar Advisor with Watson. This machine combines IBM QRadar, the industry-leading security analytics platform, with Watson’s cognitive capabilities for Cyber Security, which automatically investigates and qualifies security incidents.

In addition to the Cognitive SOC, is IBMs BigFix Detect, “an endpoint detection and response (EDR) solution that extends cognitive processing to the points in the network where cyberattacks typically begin”.

This technology works by highlighting malicious behaviour and delivers targeted remediation to the compromised endpoints within minutes, which will prevent any attacks before they potentially spread.

This article was first published at: