Role of AI and ML in future of cybersecurity

Role of AI and ML in future of cybersecurity

From the pillars of safeguarding digital assets against cyberthreats to the best approach of employing AI and ML solutions, Alain Penel at Fortinet outlines the challenges faced by organisations and how CISOs can manage risks staying at the forefront of innovative technologies.

Alain Penel, Vice President, Middle East, Turkey and CIS, Fortinet

As AI and ML continue to evolve, what do you see as the most promising future developments in cybersecurity?  

Artificial Intelligence is a transformative force in the industry, and we recognise the profound impact that it is having, and will continue to have, on enhancing cybersecurity strategies. AI-driven solutions enable organisations to analyse vast amounts of data and identify patterns that might otherwise go unnoticed. This empowers them to proactively detect threats, even those with sophisticated attack techniques.  

AI-enhanced cybersecurity solutions have improved threat detection accuracy, reduced false positives, and enabled faster incident response, thereby bolstering the overall security posture of businesses. Behavioural analysis is also enabling organisations to establish baseline user and network behaviours, promptly flagging deviations indicative of ransomware attacks or APT campaigns. 

How does Fortinet anticipate incorporating these advancements into its security offerings? 

Fortinet has been at the forefront of cutting-edge technologies such as AI and ML for years. Incorporating AI into our Security Fabric, our response centres on an integrated approach, leveraging AI-driven technologies for proactive threat detection and response. Our solutions span from securing IoT devices to fortifying edge environments, to addressing the intricate interplay between cutting-edge innovation and security. 

Furthermore, while many of our competitors OEM their security intelligence from different vendors, FortiGuard Threat Intelligence has been built in-house, allowing us to apply AI consistently across different sources to expand the scope and scale of how and where it can be used.  

In April, we unveiled new and expanded GenAI assistant capabilities for FortiAI, formerly Fortinet Advisor, across our FortiAnalyzer, FortiSIEM, and FortiSOAR solutions. These enhancements will help security operations teams of any size make better-informed decisions and respond to threats faster by simplifying even the most complex tasks.  

How can regional organisations overcome concerns related to data privacy and security when adopting GenAI? 

We hear a lot of concern around data privacy and GenAI from organisations in the region. Security and data privacy and security are top of mind for decision-makers when considering GenAI adoption.  

The first step to overcoming this challenge is to implement strong encryption and data management practices. This ensures that sensitive data is protected at all stages. Another crucial aspect is to align with global cybersecurity standards. Also, by adhering to recognised frameworks like GDPR or ISO 27001, organisations can ensure that they meet best practices for data protection.  

Fortinet, for instance, provides solutions that are designed to integrate these standards seamlessly, so organisations can focus on their AI initiatives without compromising security. 

Additionally, regular risk assessments and audits can help identify potential vulnerabilities before they become problems. It is about being proactive and ensuring that security is built into the GenAI deployment from the ground up, rather than trying to add it on later. So, while the concerns are valid, they are  manageable with the right approach. 

What are the primary challenges organisations face when implementing AI and ML solutions for cybersecurity? 

When we talk to organisations, they often mention high costs, a lack of skilled GenAI professionals, and worries about data privacy and security as some of the biggest hurdles to adopting AI and ML.  

The shortage of skilled talent in particular is a huge factor. As AI is a complex technology, without the right expertise, it is tough for organisations to fully leverage its potential. We are talking about needing people who understand both AI and the specific challenges of cybersecurity in AI environments. Without these experts on board, organisations could struggle not only with deploying AI and ML but also with securing them properly. 

This can slow down the entire adoption process because companies are either hesitant to move forward without the right team in place, or they might face issues after deployment that could have been avoided with the right talent from the start. So the talent gap is a big issue in this space. 

Cost is also one of the biggest hurdles in AI and ML implementation, especially when you consider the infrastructure, talent, and ongoing maintenance. There are ways to mitigate these costs, for example, cloud-based GenAI solutions can significantly reduce the need for expensive on-premises hardware.  

Organisations can start with smaller, more manageable projects and gradually scale to control costs. Partnering with a vendor that offers scalable solutions can also help businesses get the most value out of their investment while keeping costs in check. 

Regarding Fortinet’s security solutions, what are the visible and tangible benefits for CISOs? 

Today’s CISOs carry great responsibility. With the constantly evolving threat landscape, coupled with strict regulatory demands, CISOs are compelled to maintain a delicate balance between safeguarding data integrity and confidentiality while adhering to governance requirements. This places them under significant pressure to implement foolproof security measures.  

Fortinet’s Security Fabric Platform is perfect for CISO’s looking to bring all their security solutions under one roof, making it easier to see what’s happening across the entire network, from the cloud to the edge. By doing this, CISOs can ensure that security measures are consistent and that nothing slips through the cracks. It also simplifies management, which is always a bonus.  

You have also heard the term Zero Trust a lot lately too. The idea here is simple but powerful: trust no one, verify everything. In a world where threats can come from inside or outside your organisation, CISOs must ensure that every user and device trying to access your network is authenticated and authorised.  

Fortinet solutions like multi-factor authentication, MFA and identity and access management, IAM are key components in making this approach work effectively. 

With a hybrid work culture, employees are scattered across offices and remote locations. Securing endpoints like laptops, smartphones, and IoT devices has never been more critical than it is today. CISOs must invest in advanced endpoint protection solutions that can detect and respond to threats in real time.  

Regular patch management and keeping software up to date are some of the easiest ways to close security gaps. 

Browse our latest issue

Intelligent CISO

View Magazine Archive