Camelot Launches Cybersecurity Service Augmented by ML

Camelot this week launched a Secure360 cybersecurity platform that enables its cybersecurity team to leverage machine learning algorithms to perform vulnerability and assessments, cyberthreat hunting and cyberthreat intelligence analysis.

Camelot CEO Stanford Oliver said the overall goal is to identify and remediate issues before a cybersecurity incident occurs.

The Secure360 platform the managed security service provider (MSSP) developed integrates a range of cybersecurity tools. That enable it to manage cybersecurity to prevent breaches rather than focusing on how to manage an incident once a breach occurs. One of the primary issues with how organizations approach cybersecurity today is that there is not enough focus on preventing breaches, he added.

As a result, organizations are losing the cybersecurity war because there’s too much focus on how best to respond to a breach rather than on prevention, noted Oliver.

It’s not clear how willing organizations are to rely on external cybersecurity expertise, but a general shortage of skills means most organizations don’t have enough internal expertise to secure increasingly complex IT environments. Cybercriminals, in contrast, have the financial resources needed to hire attackers at will. Many of them are also starting to invest in artificial intelligence (AI) to increase both the volume and sophistication of the cyberattacks they launch. The platform created by Camelot enables the service provider to aggregate enough data to train AI models that augment the cybersecurity team that the service provider has assembled, noted Oliver.

It’s not likely the average organization is going to be able to aggregate enough data on its own to train an AI model, so as cybersecurity increasingly becomes an ‘AI arms race,’ there will be a greater need to rely more on external service providers. That doesn’t necessarily mean internal cybersecurity teams will be replaced, but it does mean roles within organizations will need to be redefined.

Regardless of approach, the capabilities and resources service providers can bring to bear to resolve cybersecurity issues is steadily increasing. Camelot will stop short of launching offensive attacks against cybercriminals, preferring to refer those matters to law enforcement officials, said Oliver. However, organizations should expect to be able to more proactively thwart threats before they “go boom,” said Oliver.

There is, of course, no shortage of MSSPs that generate alerts. The challenge and the opportunity now is to determine which MSSPs are making the level of investment required to provide more actionable intelligence. Most organizations today already suffer from levels of alert fatigue that make it all but impossible to discern an actual signal from all the noise being generated. The more complex the IT environment, the more alert noise gets generated.

Of course, cybercriminals are counting on the fact that, despite all the alerts being generated, an attack is not going to be detected for weeks, months or longer. The only way to combat that threat is with meaningful cybersecurity intelligence that identifies issues long before they eventually lead to a full-blown crisis.

Image Source: Photo by Jonathan Kemper on Unsplash 

Avatar photo

Michael Vizard

Mike Vizard is a seasoned IT journalist with over 25 years of experience. He also contributed to IT Business Edge, Channel Insider, Baseline and a variety of other IT titles. Previously, Vizard was the editorial director for Ziff-Davis Enterprise as well as Editor-in-Chief for CRN and InfoWorld.

mike-vizard has 746 posts and counting.See all posts by mike-vizard