Australian Cyber Engineers Use IBM Watson To Detect Insider Threats Across Platforms - Which-50

Australian IBM cybersecurity engineers have developed an artificial intelligence (AI) system to analyse network connections and employee communications at an enterprise scale. The model detects changes in users' behaviour and can automatically triggers investigations even if the changes occur across multiple platforms. IBM research found the root cause for 52 per cent of data breaches in Australia was malicious or criminal attacks which often use methods like phishing and social engineering. The new IBM solution, developed in the company's Gold Coast cybersecurity lab as part of a hackathon, uses AI to monitor changes in employee behaviour and flags indicators of compromise. It was debuted to the industry at last week's Australian Cyber Conference in Melbourne as a way of showing what can be done but the solution is not something that can be bought directly from IBM. Currently known as "QRadar Insider Threat Detector with Watson" it uses IBM's AI model, Watson, to analyse user generated content – like emails, Word documents, and Slack messages – to detect both the tone of content and employees' typical behaviour or "personalities".