Generative AI is coming to both line-of-business data analysis as well as security, as Cohesity deepens its ties to Microsoft. Data backup and management company Cohesity today announced plans to offer an Azure OpenAI-backed chatbot as both a security analysis tool and line-of-business assistant, along with tighter integration with Active Directory, Sentinel and Purview, as part of an expanded partnership with Microsoft. The chatbot is designed to help with both rapid security analysis and business end-user tasks. In a demonstration given the day before the announcement, Cohesity senior director of systems engineering Greg Statton showed off the former use case by showing a security console with some potential irregularities displayed. Using natural language queries, the system was able to identify users accessing backup systems from unusual IP addresses, as well as describe anomalous behavior in log data. “As we all know, ransomware is not only going after your data, but then it’s immediately trying to attack that backup,” Statton said. “And so I thought it’d be really interesting to take that live log stream data of who’s accessing the backup system and what it is they’re doing, and synthesize it into a very crisp executive summary.” The idea is that the AI system, which is powered by the Azure OpenAI generative AI feature set, uses the provided SIEM information as its main data set. It’s similar to the line-of-business functionality that Statton subsequently demoed, giving the example of a law firm using the AI to search through previous cases for those involving particular types of clients or legal issues. “Through this generative AI hook, I can find out exactly what files [I need] within Cohesity,” Statton said. “So it’s actually going into that data that’s been highly indexed, grabbing those key paragraphs that match my question.” The actual provision of these features to the end user, in the security instance, will be done through Microsoft — the company announced that its DataProtect backup-as-a-service offering will now integrate with Microsoft’s Sentinel SIEM package for quicker reaction to ransomware alerts and incident tracking. Similarly, Cohesity’s data classification platform will tie into Microsoft’s Purview compliance portal for data privacy and discovery. “OpenAI is a tremendous productivity boon in terms of how quickly you can get answers,” said Cohesity CEO Sanjay Poonen. “It’s not just asking about these meaning-of-life questions, they’re asking questions on your data.” Cohesity said that these new features aren’t generally available yet, and didn’t specify a release date. Poonen characterized it as an internal research project that the company is working to turn into a functioning product, and gave a timeline of months or quarters for a full release. Related content brandpost Sponsored by Zscaler Phishing attacks rise 58% in the year of AI AI has blurred the line between authentic and fraudulent content, making it more challenging to discern phishing schemes from legitimate web pages and digital communication. By Zscaler May 20, 2024 7 mins Machine Learning Network Security brandpost Sponsored by Zscaler New VPN risk report finds nearly half of enterprises attacked via VPN vulnerabilities As the number of high-profile security vulnerabilities associated with VPNs continues to rise, businesses should anticipate a corresponding rise in security incidents related to VPNs. By Zscaler May 20, 2024 6 mins Network Security analysis Kyndryl emphasizes genAI with Nvidia partnership, mainframe modernization tools Kyndryl will incorporate Nvidia AI technologies into its Kyndryl Bridge platform to optimize AIOps services. By Michael Cooney May 20, 2024 4 mins Mainframes Generative AI GPUs how-to Download our hybrid cloud data protection enterprise buyer’s guide From the editors of Network World, this enterprise buyer’s guide helps network and security IT staff understand the issues their organizations face around protecting corporate data in a hybrid cloud environment and how to choose the right solut By Neal Weinberg May 20, 2024 1 min Hybrid Cloud Network Security Enterprise Buyer’s Guides PODCASTS VIDEOS RESOURCES EVENTS NEWSLETTERS Newsletter Promo Module Test Description for newsletter promo module. Please enter a valid email address Subscribe