Events
,
RSA Conference
,
RSA Conference Videos
CrowdStrike CTO Elia Zaitsev on AI’s Role in Overcoming Legacy SIEM Challenges
Legacy SIEM technology is deemed ineffective in modern security architecture. Traditional systems fail to integrate data from diverse sources, hindering effective incident response and leaving organizations vulnerable to evolving threats, according to Elia Zaitsev, chief technology officer at CrowdStrike.
See Also: Using DPM and MITRE ATT&CK to Improve SOC Effectiveness
Artificial intelligence has emerged as a game changer in enhancing the analytical capabilities of SIEM systems, Zaitsev said, emphasizing CrowdStrike’s efforts in integrating generative AI in its security offerings. Charlotte AI provides concise summaries, automates investigative tasks and improves overall operational efficiency for customers and partners, he said.
“From a defensive standpoint, we’re going to still want to bring in AI technologies to help deal with this larger and faster onslaught,” Zaitsev said. “But you still need the humans there – being creative, looking for that unknown unknown – because that’s what the adversaries are going to be doing as well.”
In this video interview with Information Security Media Group at RSA Conference 2024, Zaitsev also discussed:
- The challenges related to data proliferation;
- Why human oversight is crucial for creative problem-solving and decision-making in security operations;
- How AI is more effective in structured scenarios versus unpredictable, real-world situations.
Zaitsev has worked as a trusted adviser to CrowdStrike’s largest customers while collaborating with the product and R&D teams to ensure continued customer success and safety through the innovation and evolution of the Falcon platform. Prior to CrowdStrike, Zaitsev was at IBM, i2 Inc. and Northrop Grumman.
This post was originally published on 3rd party site mentioned in the title of this site
