Automation of threat detection processes: improving the quality

Abstract

Abstract. Processes to automate the detection of threats in cyberspace improve the level of security. Automation is created precisely in order to reduce the number of processes under the guidance of a person: The artificial intelligence on which the systems are based, unlike a person, is capable of processing a large amount of information in real time. Real-time response is minimizing the time between detection of a threat and taking action, reducing potential damage from cyber attacks. Thanks to automation, specialists can not focus on detecting threats in the system and instead spend resources on more important projects. Automation provides protection against the human factor (fatigue, inattention), i.e. all threats will be detected and neutralized. Thanks to automation, specialists can not focus on identifying threats in the system and spend resources on larger projects.