How AI is Strengthening Cybersecurity in India

The need for cybersecurity in organizations has never been greater. In 2023, there were 3,205 publicly reported data breaches around the world – a new record, up 72% from 2021 – and a single data breach now costs USD 4.45 million on average, also an all-time high.

These are daunting numbers, but there is good news: organizations in India have entered a refresh cycle in terms of cybersecurity, and AI is already playing a central role in making their cybersecurity architectures easier to manage. 

Manageability is key, as the sprawl of cybersecurity technologies across different areas of an organization’s IT infrastructure is becoming more and more complex to manage and operate. In this refresh cycle, IT managers want to both adopt and integrate the latest technologies to ease the management burden.

Generative AI is changing everything

Large language models can analyze vast amounts of data and provide actionable insights through simple queries, thanks to their advanced capabilities in understanding and generating human-like text. Let’s explore four ways in which this form of AI is improving cybersecurity.

• Better detection and response

AI is revolutionizing detection and response processes. With their ability to analyze large volumes of data and identify patterns, AI-powered systems can quickly detect anomalies and potential threats.

Using machine-learning algorithms, these systems can also learn from new data and adapt to evolving attack techniques, keeping organizations one step ahead of cybercriminals. This proactive approach also speeds up response times.

• Improved data analysis and visibility

The integration of AI in cybersecurity has strengthened organizations’ data-analysis capabilities. 

AI-powered systems can rapidly and continually analyze large volumes of security data. These advanced analytics help security teams identify trends, detect hidden patterns, and gain a comprehensive understanding of their security posture. 

With improved visibility, organizations can make informed decisions and prioritize their security efforts effectively.

• More automation, fewer skill requirements 

By enabling automation that streamlines routine tasks and eliminates the need for manual intervention, AI is reducing the need for human skills to manage and operate systems. Security professionals are then freed up to focus on more strategic or complex issues. 

Generative AI, for instance, is helping security teams to automate configuration management and policy changes. If team members want to change a rule or policy, they can communicate the change conversationally rather than having to understand the technologies in full to make a manual change. This improves operational efficiency and reduces the risk of human error, which is often a weak link in security.

AI does not, however, eliminate the need for human resources. While AI can automate certain cybersecurity tasks, human expertise remains crucial in decision-making and pressing the proverbial “red button” when necessary.

• Integration and consolidation

 A significant challenge in cybersecurity is the fragmentation of security technologies across different areas of an organization’s IT infrastructure. AI is addressing this challenge by facilitating integration and consolidation. 

AI-powered systems can connect multiple product lines and security requirements. Organizations can then manage and operate their security tools from a central console. This integration makes it easier to coordinate security operations and enforce policies consistently across the network.

Busting common myths

Despite the numerous benefits of using AI in cybersecurity, there are a few myths that hinder its adoption. 

One such myth is that AI-enabled cybersecurity is expensive and disruptive. However, because AI modules are being built into existing security toolsets, it makes the transition more manageable and cost-effective. 

Strengthening cybersecurity is an ongoing program, not a one-off update. In a fragmented ecosystem, it is difficult to consolidate multiple products from different providers in a single AI engine. Incremental improvements to incorporate the AI elements being added to individual security products is a simpler solution.

The value of third-party expertise

Importantly, C-level executives are increasingly turning to third-party service providers to manage their cybersecurity, as these providers give them access to a range of expertise and full-time support.

 The third-party vendors have experience as they know each security vendor’s product lines and their use cases so that they can match the right product line with a particular industry or client and implement it correctly.  They also have a global understanding of the threat landscape, which is key in identifying, prioritizing, and addressing a client’s security needs.

With AI as a powerful ally, India’s cybersecurity landscape is poised for a more resilient future. Organizations just need the expertise to gain the full benefit of the technology.

Authored by Murtaza Bhatia, Director - Cybersecurity, India, NTT DATA