February 15, 2017 By Vincent Laurens 2 min read

As a cybersecurity leader at Sogeti, one of the biggest challenges I often face is a scarcity of resources. Recruiting and training the right people and preparing them to perform a detailed security analysis that meets our rigorous standards can take an extended period of time.

Unfortunately, cybercrime is evolving and occurring at an unprecedented rate, making this challenge even more critical than in past years. At Sogeti, we aim to ensure that our cybersecurity analysts are ready to examine and tackle the latest threats, but we no longer have the luxury of using traditional recruiting and training techniques. To help with this challenge, we consulted our business partner team at IBM.

Sogeti Speeds Up Security Analysis With Watson

Sogeti provides end-to-end cybersecurity services including IT, industrial systems and data, and secure digital transformations. In short, we advise, we protect and we monitor.

Sogeti has been an award-winning IBM Business Partner for the past 10 years and was named one of the first Platinum Business Partners in January 2017. Through our partnership, we were given the opportunity to participate in the Watson for Cyber Security beta program.

We were, of course, familiar with the success stories and testimonials about how Watson is truly revolutionizing the way organizations analyze and react to data. We were thrilled at the prospect of putting Watson for Cyber Security through the trials of an actual, functioning security operations center (SOC) rather than the traditional methods of product testing using models or sample data.

With the approval of one of our customers, a large insurance company, we were able to launch the beta process in October using live data, and the results were very positive. Watson for Cyber Security was able to accurately accelerate the analysis process by 50 percent. This allowed our staff to analyze significantly more information in a shorter amount of time, and enabled us to target and react to the most persistent threats immediately.

Our customer was also very impressed with the increased quality and speed of the analysis. Our faster process, the customer said, enabled the organization to accelerate its workflows and focus on the most urgent threats.

A Significant Breakthrough

In this new era of digital transformation, products such as Watson and our partnership with IBM help us to move beyond traditional models and deliver high-value, innovative cybersecurity services immediately.

A decade ago, ethical hackers were known as the cybersecurity rock stars. Today, data scientists are claiming that title. We are always skeptical during beta programs, but after vetting the product in a live scenario, we are very satisfied with the results. I can only see Watson for Cyber Security becoming more advanced and robust in the future, making it one of the most significant cybersecurity breakthroughs of the past 10 years.

More from

SoaPy: Stealthy enumeration of Active Directory environments through ADWS

10 min read - Introduction Over time, both targeted and large-scale enumeration of Active Directory (AD) environments have become increasingly detected due to modern defensive solutions. During our internship at X-Force Red this past summer, we noticed FalconForce’s SOAPHound was becoming popular for enumerating Active Directory environments. This tool brought a new perspective to Active Directory enumeration by performing collection via Active Directory Web Services (ADWS) instead of directly through Lightweight Directory Access Protocol (LDAP) as other AD enumeration tools had in the past.…

Smoltalk: RCE in open source agents

26 min read - Big shoutout to Hugging Face and the smolagents team for their cooperation and quick turnaround for a fix! Introduction Recently, I have been working on a side project to automate some pentest reconnaissance with AI agents. Just after I started this project, Hugging Face announced the release of smolagents, a lightweight framework for building AI agents that implements the methodology described in the ReAct paper, emphasizing reasoning through iterative decision-making. Interestingly, smolagents enables agents to reason and act by generating…

4 ways to bring cybersecurity into your community

4 min read - It’s easy to focus on technology when talking about cybersecurity. However, the best prevention measures rely on the education of those who use technology. Organizations training their employees is the first step. But the industry needs to expand the concept of a culture of cybersecurity and take it from where it currently stands as an organizational responsibility to a global perspective.When every person who uses technology — for work, personal use and school — views cybersecurity as their responsibility, it…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today