A naukri.com initiative
VentureBeat
5d
189
Image Credit: VentureBeat
Amex GBT puts AI at the center of SOC automation, threat modeling, incident response
- Amex GBT's CISO, David Levin, is focused on using AI to enhance threat detection, incident response, and security operations.
- They integrate AI into their workflows for faster detection of malicious activities and to enrich alerts with contextual data.
- AI helps prioritize urgent alerts, enabling analysts to focus on high-risk issues and improving overall efficiency in threat response.
- Levin leads an AI governance framework based on NIST principles, ensuring security, privacy, and compliance are maintained throughout AI deployment.
- The framework includes risk assessment, testing, and monitoring processes to mitigate security risks associated with AI.
- Amex GBT addresses shadow AI usage through policies, technical controls, and user training to prevent unauthorized and risky AI deployments.
- Challenges like data security, model drift, and adversarial testing are managed through encryption, model retraining, and validation to maintain AI reliability.
- Levin believes that AI transforms the role of the CISO into a strategic business enabler, guiding responsible AI adoption for business benefits.
- Globally, AI adoption at Amex GBT is structured with a centralized approach ensuring consistent security measures are embedded in AI projects from inception.
- Tools like CrowdStrike's Charlotte AI are used for alert triage, enhancing incident response and analyst training through AI support.
- Levin foresees AI leading to autonomous SOC workflows, predictive security models, and enhanced digital trust practices in cybersecurity over the coming years.
Read Full Article
11 Likes
For uninterrupted reading, download the app