Events , RSA Conference , RSA Conference Videos

Transform Traditional Security Models With AI-Integrated SOC

CrowdStrike CTO Elia Zaitsev on AI's Role in Overcoming Legacy SIEM Challenges
Elia Zaitsev, chief technology officer, CrowdStrike

Legacy SIEM technology is deemed ineffective in modern security architecture. Traditional systems fail to integrate data from diverse sources, hindering effective incident response and leaving organizations vulnerable to evolving threats, according to Elia Zaitsev, chief technology officer at CrowdStrike.

See Also: Building Better Security Operations Centers With AI/ML

Artificial intelligence has emerged as a game changer in enhancing the analytical capabilities of SIEM systems, Zaitsev said, emphasizing CrowdStrike's efforts in integrating generative AI in its security offerings. Charlotte AI provides concise summaries, automates investigative tasks and improves overall operational efficiency for customers and partners, he said.

"From a defensive standpoint, we're going to still want to bring in AI technologies to help deal with this larger and faster onslaught," Zaitsev said. "But you still need the humans there - being creative, looking for that unknown unknown - because that's what the adversaries are going to be doing as well."

In this video interview with Information Security Media Group at RSA Conference 2024, Zaitsev also discussed:

  • The challenges related to data proliferation;
  • Why human oversight is crucial for creative problem-solving and decision-making in security operations;
  • How AI is more effective in structured scenarios versus unpredictable, real-world situations.

Zaitsev has worked as a trusted adviser to CrowdStrike’s largest customers while collaborating with the product and R&D teams to ensure continued customer success and safety through the innovation and evolution of the Falcon platform. Prior to CrowdStrike, Zaitsev was at IBM, i2 Inc. and Northrop Grumman.

About the Author

Michael Novinson

Michael Novinson

Managing Editor, Business, ISMG

Novinson is responsible for covering the vendor and technology landscape. Prior to joining ISMG, he spent four and a half years covering all the major cybersecurity vendors at CRN, with a focus on their programs and offerings for IT service providers. He was recognized for his breaking news coverage of the August 2019 coordinated ransomware attack against local governments in Texas as well as for his continued reporting around the SolarWinds hack in late 2020 and early 2021.

Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing, you agree to our use of cookies.