Trend Micro Unveils Vision One Platform with Powerful Gen AI Integration
Leading cybersecurity provider, Trend Micro Incorporated, has long been incorporating artificial intelligence (AI) into its technologies. However, it is now equipped with the capabilities of generative AI, marking a significant advancement in its offerings.
Today, Trend Micro has introduced its new Vision One platform, which brings together a range of cybersecurity capabilities, including extended detection and response (XDR), attack surface risk management (ASRM), and zero trust. This platform represents an evolution of the previously announced Trend Micro one platform in 2022, with the noteworthy addition of gen AI.
One notable feature of the Vision One platform is the gen AI-powered companion called Trend Vision One. This companion serves as an assistant for security operation center (SOC) analysts, enabling them to utilize natural language queries to obtain answers, facilitate threat hunting activities, and expedite remediation processes.
Kevin Simzer, COO of Trend Micro, expressed the company’s commitment to leveraging the power of gen AI within the security operation center. He emphasized the challenging nature of the SOC environment, where analysts are often overwhelmed with vast amounts of telemetry from diverse sources.
By harnessing the potential of gen AI, Trend Micro aims to alleviate the stress faced by SOC analysts and empower them with an intelligent assistant that can streamline their workflows. The integration of gen AI into the Vision One platform exemplifies Trend Micro’s dedication to delivering cutting-edge solutions that enhance cybersecurity operations and provide effective defense against emerging threats.
Why Gen AI is Good fit for the SOC
A lot of data and alerts are continuously flowing into the average SOC.
AI has long had a role in technology platforms from vendors including Trend Micro to help filter through all the noise and find patterns, anomalies and potential risks. What SOC analysts still have to do is understand what the data actually means and know the right commands, scripts and tools to get the desired result.
Simzer explained that the companion is an optional tool that organizations can choose to turn on as part of Trend Vision One. Part of an SOC analyst’s job is to perform threat hunting across the environment, looking for potential risks.
“Our companion capability will allow the SOC analyst to actually do threat hunting in a much more effective way,” Simzer siad. “The SOC analysts can input natural language and it will form the complex XDR queries that need to run.”
SOAR integration
XDR queries are an often complex set of command and scripting needed to search across all the data a cybersecurity platform collects to find matches for a given set of criteria and circumstances that could be indicative of a particular threat.
In recent years, SOCs have been increasingly integrating security orchestration, remediation and response (commonly known by the acronym SOAR) technologies in a bid to automate security. Simzer said that SOAR is also built into the Vision One platform and can potentially benefit from the gen AI companion.
Gen AI is also helping Trend Micro itself as it looks to optimize customer support. Simzer said that Trend Micro is using the technology to build out knowledge-based articles on how technologies work. He explained that Trend Micro’s customer support people are now using gen AI to help provide recommendations and answer user questions.
What’s under the hood? Microsoft Azure OpenAI
While Trend Micro has been developing its own AI capabilities as part of its portfolio for years, the new gen AI capabilities are powered by the Microsoft Azure OpenAI service.
“We’ve been using AI for over a decade; it’s not like we didn’t have data scientists, but there’s no question gen AI really fast forwards a ton of innovation and we jumped on it fairly quickly,” Simzer said. “We have plans down the road to actually have our own gen AI, but the immediate benefits of what we could get with OpenAI were just so real that we couldn’t pass it up.”
A key issue for any organization with gen AI is privacy, which is a high priority concern with cybersecurity information. Simzer said that Trend Micro has been very careful and diligent to ensure that customer data remains private.
“We’ve been training and tuning it and building the guardrails to make sure that none of our customer data is ever introduced into the Azure OpenAI environment,” he said. “We really wanted to be methodical and responsible about it.”