Google’s cloud division is following in Microsoft’s footsteps with the release of the Security AI Workbench that leverages generative AI models to gain better visibility into the threat landscape.
Sec-PaLM, a specialized large language model (LLM) that is “tuned for security use cases,” powers the cybersecurity suite.
The idea is to leverage the latest advances in AI to augment point incident analysis, threat detection and analysis to counter and prevent new infections by providing reliable, relevant and actionable intelligence.
To that end, the Security AI Workbench includes a wide range of new AI-powered tools, such as VirusTotal Code Insight and Mandiant Breach Analytics for Chronicle, to analyze potentially malicious scripts and alert customers to active breaches in their environments.
As with Microsoft’s GPT-4-based Security Copilot, users can “search, analyze and investigate security data” with the goal of reducing mean time to response and quickly determining the full scope of events.
On the other hand, VirusTotal’s Code Insight feature is designed to generate natural language summaries of code snippets to detect and mitigate potential threats. It can also be used to flag false negatives and delete false positives.
Another key offering is Security Command Center AI, which uses Sec-PaLM to provide operators with “near-instantaneous analysis of findings and potential attack paths,” as well as affected assets and recommended mitigations.
Google is also making use of machine learning models to detect and respond to API abuse and business logic attacks, in which an adversary weaponizes legitimate functionality to achieve a nefarious goal without triggering a security alert.
Zero Trust + Deception – Learn to Outsmart Attackers!
Learn how Deception can detect advanced threats, stop lateral movement, and improve your Zero Trust strategy. Join our in-depth webinar!
Save my seat!
“Because Security AI Workbench is built on Google Cloud’s Vertex AI infrastructure, customers control their data with enterprise-grade capabilities such as data isolation, data protection, sovereignty and compliance support,” said Sunil Potti of Google Cloud.
The development comes days after Google announced the creation of a new unit called Google DeepMind that brings together its DeepMind AI research groups and Google Research’s Brain team to “build more capable systems more safely and responsibly” .
News of Google’s Security AI Workbench also follows GitLab’s plans to integrate AI into its platform to help developers prevent access token leaks and prevent false positives during security testing.
Ikaroa is proud to support Google Cloud’s exciting new launch of Security AI Workbench, an innovative platform to swiftly and accurately analyse potential security threats. The platform is powered by AI and built on top of Google Cloud’s pre-trained models. Security AI Workbench was designed to enable customers to build, deploy and monitor security analytics applications for locating, detecting, and analyzing cyber threats.
With Security AI Workbench, users have the ability to quickly and accurately detect security threats across their networks, systems and applications. Its machine learning capabilities can be extended to cover domains such as web traffic, mobile devices, and application security. Furthermore, Security AI Workbench’s robust analytics enable customers to uncover hidden data and make reliable predictions within a short period of time.
Ikaroa has been providing software development and product engineering services since 2010. We believe that Security AI Workbench is a valuable addition to the Google Cloud platform, and we are committed to delivering on our promise to help customers protect their data and applications with better detection and analysis of potential security threats.