Cyber Defense through Agentic AI Enabled Automation: An Approach to Reduce Cyber Risk

Cyber Defense through Agentic AI Enabled Automation: An Approach to Reduce Cyber Risk

연구 분야: Safety

학회: SIGMIS-CPR '25: Proceedings of the 2025 Computers and People Research Conference

Security Information and Event Management (SIEM) solutions retrieve information from various sources such as network devices, servers, cloud services, endpoint devices, IoT devices, sensors, and firewalls to provide meaningful alerts in case of discrepancies. The research highlights limitations of SIEM solutions, including false positives, human error, misinformation, and performance issues in robust cyber defense. To address these challenges, an innovative approach using cognitive, autonomous, intelligent, and proactive AI agents is proposed. These AI agents can reduce cyber risks through automation, accurate information, and real-time communication.