In the ever-changing cybersecurity landscape of today, organizations are under constant pressure to improve their security operations and threat defenses all while juggling constrained resources. Justin Lachesky, Director of Cyber Resilience at Redis, has become one of the key players leading this charge. Through Lachesky’s ingenuity and leadership, his team developed, tested and launched an AI-driven SOC-as-a-Service™ solution. This innovation has revolutionized the productivity of their business.
Lachesky’s team has quickly adapted to this new AI SOC technology. In fact, as a consequence of that, they’ve reduced the average time for an investigation from hours to only 10 minutes. This incredible accomplishment increases overall productivity greatly. It’s equally important because it enables analysts to focus on higher value activities and not waste their time in repetitive manual processes. Lachesky is passionate when discussing the importance of this mindset. He insists that the purpose is to enable analysts to do more work, not as a replacement.
As more and more organizations embark on their own AI journeys, Lachesky’s experience is an outlier. It’s been a strong case study to point others toward.
Embracing AI Solutions
Today, Lachesky’s team is using Prophet AI dispositions as another piece of data to help make the best decision. By integrating AI within the workflow, human analysts can focus on more informed decision-making, augmented by the technology to improve efficiencies and speed of response. By identifying the actual problems that need addressing and establishing non-negotiables before engaging with vendors, Lachesky provides a structured approach to implementing AI solutions effectively.
Getting clear on the true issues from the beginning is key, he cautions. This approach creates more productive conversations with vendors. More importantly, it helps make sure that the solution they select is the best possible fit for their unique needs.
Lachesky’s deep dive comparison of various vendors emphasizes the critical need to look past marketing and explainers, and understand how vendors are utilizing AI in the SOC setting. His team knew they needed a product that would trump other offers. Most importantly, they had to figure out what value it could provide. Through this extensive review process, they were able to choose a solution that fits easily within their current workflows.
Enhancing Operational Efficiency
The introduction of the AI SOC solution was a monumental change in the day-to-day operations for Lachesky’s team. Their new speed and efficiency has enabled them to process a greater volume of incidents without sacrificing quality. For many security operations teams, like Lachesky’s, the expectation is to accomplish more with less, so operational efficiency is critical.
Using an AI-driven approach allows Lachesky’s team to respond to incidents in real time, cutting response time in half. This incident response protection boosts security for their organization and clients alike. Thanks to over 95 percent reduction in time spent investigating, analysts’ efforts can now be concentrated on proactive initiatives. They don’t just need to respond to new warnings and alerts.
Lachesky recently detailed how this transformation came to be in a contributed post. He shared his thoughts on the dangers of AI SOC solutions based on his extensive experience. This piece provides an excellent primer for other security leaders interested in deploying similar technologies across their own organizations.
The Importance of Transparency
From Commute to Care, Justin Lachesky has been laser-focused on promoting transparency within security operations. He contends that creating a culture of openness, one where the analysts themselves feel equipped with knowledge and encouragement, is essential to attaining success in the long run. For Lachesky, transparency is a sticking point – it establishes trust among teams and increases collaboration to tackle high-consequence security challenges.
This culture translates outside the internal team, too — impacting how far firms will go to make public communications as easy to digest as the complex information behind them. Through active communication, Lachesky hopes that organizations can foster positive connections to establish mutual understandings of expectations. Disclosing information about security measures taken will result in better security outcomes as well.