Resilient Cyber Resilient Cyber w/ Filip Stojkovski & Dylan Williams - Agentic AI & SecOps
Dec 11, 2024
Dylan Williams, a cybersecurity expert focused on security operations and large language models, and Filip Stojkovski, a seasoned professional in SecOps and threat intelligence, discuss the cutting-edge integration of Agentic AI in cybersecurity. They break down the concept of AI agents and multi-agent architectures, highlighting their potential to streamline operations. The conversation also touches on challenges like identity management and the necessity of human oversight, alongside practical tips for integrating AI into existing security frameworks.
AI Snips
Chapters
Transcript
Episode notes
Focus on SecOps
- Security operations (SecOps) is a key focus area for AI in cybersecurity.
- This is because SecOps involves many manual tasks, has a structured environment, and existing automation provides a base for AI integration.
Blueprint for AI Agents
- AI agents in SecOps should handle specific tasks, not end-to-end processes.
- Human oversight is crucial between agent actions to prevent errors and ensure appropriate responses.
Starting Small with AI Agents
- Start with small, specialized tasks for AI agents, focusing on areas with repetitive manual work.
- Measure the impact and gradually expand the agent's role.