Download our in-depth report: The Ultimate Guide to IT Security Vendors
Voice-enabled virtual assistants are already changing how people interact with technology. Now, with the general availability of Insight Engines' Cyber Security Investigator (CSI) threat intelligence tool, IT security teams can use Alexa to get answers on possible threats using data from Splunk's machine-data monitoring and analytics platform.
Cyber Security Investigator (CSI) features natural language processing technologies that allows users, both seasoned IT professionals and even technology generalists, to gather cybersecurity insights by posing questions in plain English. Now, the product supports Amazon's digital assistant, Alexa, adding voice search capabilities to the mix.
Now, with an Amazon Echo, Dot, Show or Tap, IT workers can take a more conversational approach to unearthing security blind spots.
"Envision a security incident where the whole team is in the war room and the CISO is able to ask questions like, 'Alexa, ask CSI Traffic today from China versus the last 30 days.' CSI parses the voice-to-text input in real time, writes the complex database queries necessary to extract the insights from their machine logs, and delivers meaningful visualizations in seconds," wrote Grant Wernick, co-founder and CEO of Insight Engines, in a blog post.https://o1.qnsr.com/log/p.gif?;n=203;c=204650394;s=9477;x=7936;f=201801171506010;u=j;z=TIMESTAMP;a=20392931;e=i
With Alexa on their side, CISOs can work to quickly close potential security gaps.
"The whole security team can look at the data analysis on the screen in front of them right away, making them exponentially smarter about the threats they are facing. This is a sharp contrast to what happens today, where if a CISO has a pressing question, they task their security analysts with a research project that could take hours, days, or weeks," added Wernick.
Also new are deeper integrations with Palo Alto Networks equipment and the ability to personalize CSI homepages with custom query results pertaining to the roles of individual security analysts. The new automated query mode called Autopilot conducts searches that many not have crossed the minds of users but may nonetheless yield insightful results. Along those lines, the Pivot Queries feature builds on existing questions and intelligently suggests new ones, according to the company.
Cyber Security Investigator's general availability release arrives two months after the company completed a $15.8 million funding round. "CSI empowers analysts to escape search fatigue by helping them analyze more of their data and spend less time searching," said Grant Wernick in July. Now, with Alexa support, they can spend less time behind a keyboard to conduct their security analytics.