Leveraging networking infrastructure at global scale to build threat intelligence
While Artificial Intelligence and Machine Learning can help analysts sift through and analyse vast amounts of data , without the ability to collect and analyse relevant information across the entire Internet , threat intelligence is not very useful , explains CJ Moses at Amazon .
Organisations around the world trust AWS with their most sensitive data . One of the ways AWS helps to secure data is with an threat intelligence programme where AWS identifiers and stops many kinds of malicious online activities that could harm or disrupt our customers or our infrastructure .
Producing accurate , timely , actionable , and scalable threat intelligence is a responsibility AWS take very seriously , and is something AWS invests significant resources in .
Customers increasingly ask us where the AWS threat intelligence comes from , what types of threats and how does AWS act on what is observed , and what they need to do to protect themselves .
Questions like these indicate that Chief Information Security Officers , CISOs , whose roles have evolved from being primarily technical to now being a strategic , businessoriented function , understand that effective threat intelligence is critical to their organisations ’ success and resilience .
Every day across AWS infrastructure , AWS detects and thwart cyberattacks . With the largest public network footprint of any cloud provider , AWS has insight into activities on the Internet , in real time . For threat intelligence to have meaningful
CJ Moses , Chief Information Security Officer , Amazon impact on security , large amounts of raw data from across the Internet must be gathered and quickly analysed .
In addition , false positives must be purged . Threat intelligence findings could erroneously indicate an insider threat when an employee is logged accessing sensitive data after working hours , when in reality , that employee may have been tasked with a last-minute project and had to work overnight . Producing threat intelligence is very time consuming and requires substantial human and digital resources . Artificial intelligence and machine learning can help analysts sift through and analyse vast amounts of data . However , without the ability to collect and analyse relevant information across the entire Internet , threat intelligence is not very useful .
Even for organisations that are able to gather actionable threat intelligence on their own , without the reach of globalscale cloud infrastructure , it is difficult or impossible for time-sensitive information to be collectively shared with others at a meaningful scale .
AWS infrastructure radically transforms threat intelligence because AWS can significantly boost threat intelligence accuracy , referred to as high fidelity , because
40 www . intelligenttechchannels . com