AI: The New Frontier for Security Professionals
In the world of cybersecurity, we often find ourselves facing new challenges and technologies that can either make or break our strategies. It's a tale as old as time, reminiscent of the legendary Paul Bunyan and his encounter with a machine that threatened to outdo his mighty axe. The lesson? Adapting to new tools is crucial, especially when they offer unprecedented advantages.
AI's Impact on Security: Unveiling the Curtain
AI has seamlessly integrated into our security landscape, from endpoint protection to mail filtering. However, the challenge lies in the opacity of these AI-powered systems. Vendors guard their models as intellectual property, leaving security teams in the dark about the decision-making process. This raises concerns about accountability and the potential for misaligned priorities.
Taking Control: Building AI-Assisted Workflows
Security professionals should embrace the opportunity to build or customize their AI-assisted workflows. The goal isn't to recreate commercial tools but to address blind spots and gain control over the logic that shapes our security environment. By designing small AI utilities, we dictate the data they learn from, the risks they identify, and their behavior, ensuring alignment with our unique organizational needs.
Easing the Burden: AI's Role in Streamlining Investigations
A significant portion of security work involves translating complex queries into actionable insights. AI steps in to alleviate this burden, acting as a human-to-computer translator. With AI-powered tools, security teams can focus on higher-order reasoning, driving investigations forward more efficiently. This approach not only saves time but also enhances the overall effectiveness of security operations.
The Human Element: Where AI Falls Short
While AI excels at processing vast amounts of data, effective security goes beyond mere information storage. It requires judgment, an understanding of nuances, and the ability to direct tools toward the right outcomes. AI may make mathematically sound decisions, but it lacks the context and moral reasoning that humans bring to the table. Our value as security professionals lies in our ability to apply knowledge strategically, making informed decisions that align with organizational goals and risk tolerance.
Empowering Security Professionals: Skills for the AI Era
Python, a language traditionally seen as a barrier for many security practitioners, is now a key player in AI development. With AI, expressing intent in plain English is enough to generate most of the necessary code. The model takes care of the heavy lifting, leaving us to bridge the gap with our judgment and technical expertise. To embrace this new dynamic, security professionals need a baseline understanding of Python, AI system interpretation, and core machine learning concepts.
Practical Steps to AI Fluency
- Tool Audit: Map AI's presence in your environment and understand its default decision-making processes.
- Active Engagement: Treat AI outputs as a starting point, feeding models better data and tuning behaviors where possible.
- Automate Weekly Tasks: Streamline recurring workflows using Python and AI models, building momentum with small wins.
- Light ML Literacy: Learn the basics of model interpretation, their limitations, and how to guide them effectively.
- Community Learning: Share your AI-powered creations, compare approaches, and learn from peers navigating this transition.
The Future of Security: AI and Human Collaboration
AI is transforming the way security professionals work, but it doesn't diminish the need for human expertise. By understanding and guiding AI with intent, we become even more indispensable. Join me at SANS 2026 for a deeper dive into this topic, where I'll provide practical guidance on strengthening your AI fluency across defensive, offensive, and investigative disciplines.
Register for SANS 2026: Registration Link
Author: Mark Baggett, SANS Fellow
Follow Us: Stay updated with exclusive content on Google News, Twitter, and LinkedIn.
