On Tuesday May 30th, CrowdStrike announced Charlotte AI, its generative AI security analyst that allows customers to use natural language queries to get advanced threat analysis in the CrowdStrike Falcon Platform.
Joining the Cybersecurity Generative AI Race
This is the latest generative AI cybersecurity announcement made by some of the largest players in cybersecurity over the last couple of months.
Microsoft began the Cybersecurity generative AI race with its announcement of Microsoft Security Copilot on March 28th, followed by almost simultaneous announcements on April 24th at the RSA Conference 2023 of Google Cloud Security AI Workbench and SentinelOne announcing that it would be adding generative AI capabilities to its threat hunting platform.
With CrowdStrike joining the race, this makes for some very large players with access to vast amounts of cybersecurity telemetry data and speaking to several other large players at the RSA Conference, they all have plans to incorporate generative AI in their products.
AI Powered by AWS
The CrowdStrike announcement was notably lacking in details of what technology would power its generative AI offering. In a follow-up press release the following day, CrowdStrike announced that it would be leveraging Amazon Bedrock and the rest of the AWS technology stack to power its Charlotte AI.
It’s All About the Data
When working with the large language models (LLM) powering generative AI solutions, the quality and quantity of data is what drives the accuracy of the results. CrowdStrike has captured trillions of security events from a variety of platforms and asset telemetry across users, identities, devices, cloud workloads, applications, and more.
In addition to this massive trove of security data, CrowdStrike has a wealth of human-validated content that provides the AI models with confirmed methods and solutions that have successfully mitigated breaches in the real world.
Empowering Your Security Team
Charlotte AI will assist security professionals at all skill levels in identifying and resolving security issues within the enterprise. Charlotte AI can empower less experienced security professionals to identify security issues easily through simple conversational interfaces and then get guidance on how to remediate any issues identified.
Your more seasoned security professionals will be able to use Charlotte AI to automate much of the repetitive but necessary tasks, freeing them up to take on more advanced security actions and identifying and remediating potential threats much faster.
Bottom Line
CrowdStrike Charlotte AI can be a force multiplier for stretched security teams with its ability to quickly identify, quantify, and remediate important security issues. It can make a junior security professional as effective as a more seasoned member of the team, and a seasoned member a security superstar.
See Craig and all of Aragon Research’s expert analysts for Transform Tour 2023!
AI Everywhere—Going ChatGPT | Thursday, June 15th @ 10 AM PT \ 1 PM ET
Kickoff the Summer with Aragon Research’s next #TransformTour23 stop!
Since the launch of OpenAI’s GPT service, organizations have been scrambling to put out their own copilot service. In our June Transform Tour, taking place on Thursday, June 15, 2023, we will discuss how Copilots work and how you can define a strategy to support digital labor.
This blog is a part of the Digital Operations blog series by Aragon Research’s Sr. Director of Research, Craig Kennedy.
Missed an installment? Catch up here!
