The AI Cybersecurity future is here

00:00

Is it fair to say that the future of cyber security is AI?

00:04

The future of cyber security is going to be powered by AI and anyone that thinks otherwise

00:08

is not going to have an effective platform for security.

00:10

If you think about 80% of the attacks that happen originate from email.

00:14

Yep.

00:15

Like you get an email from some prince from some exotic country and then they'll say,

00:19

well, click on this link and you can download your $10 million.

00:22

Yep.

00:22

From there, you actually download some malware.

00:25

But the problem people have, right?

00:27

Too much data, too much it's overload for a human.

00:29

Correct. That's where AI helps.

00:31

Okay.

00:31

It took a while for folks to realize is at this point, think about it, warfare starts with cyber.

00:37

Yeah.

00:38

A hospital, people would lose their lives if the hospital got breached.

00:41

Yeah.

00:42

Because people wouldn't be able to get dialysis.

00:44

Yeah.

00:46

Or whatever the treatment is that they're looking to get.

00:48

Water supply can stop for a city.

00:51

You can have power grids completely stopped.

00:53

You can have the financial system stop.

00:55

Your healthcare system stops.

00:56

There's a tremendous impact with that shortage of skill.

01:00

We have to make sure that we actually get to that at machine scale.

01:10

Hey everyone, it's David Bombal coming to you from Cisco Live back with Jeetu.

01:13

Jeetu, welcome.

01:14

Great to have you back here.

01:15

Thank you.

01:15

Thank you for having me, David.

01:16

It's great to see you again, man.

01:17

Likewise.

01:18

You on stage.

01:19

I saw today lots of announcements.

01:21

Is anyone on stage these days?

01:22

Well, but big question.

01:26

Recently, they're calling it the mother of all breaches.

01:29

26 billion records got leaked.

01:31

Last time we spoke about the attackers are, you know,

01:34

it looks like the attackers are winning.

01:36

Hopefully, you guys are going to do something about that.

01:37

Well, you know, for 30 years, David, it's been the way that things have actually transpired.

01:43

The adversary has the advantage over the defender.

01:46

And the reason for that is because they have to be right once.

01:49

We have to be right every single time.

01:51

I think this is the first time, at least in my professional career,

01:54

that I see a light at the end of the tunnel where I think the scales might tip in favor

01:59

of the defender because they'll have a data advantage.

02:02

The defenders will have a data advantage over time.

02:05

Now, it's not quite, we're not there today.

02:07

OK.

02:08

But I do see that being a possible state in the future.

02:12

And we're pretty excited about the things that we can do with it

02:14

because it's not just having a lot of data.

02:16

We've always had a lot of data.

02:18

I think the ability to correlate data effectively

02:21

and then reason with that intelligence that's there and then be able to feed that

02:25

into everything else is where I think we'll be able to predict and prevent rather than just detect

02:30

and respond.

02:30

Last time we spoke about the fact that cybersecurity especially has all of these sort of niche

02:35

companies, it seems, that are providing a very specific solution, but there's no overall solution.

02:40

Yeah, the way that innovation has evolved in cybersecurity, it's all through patchwork.

02:46

There's a new threat that comes up.

02:47

There's a new company that came out to go out and help the threat.

02:49

The ironic part about this is that model started so that the efficacy would be high for security.

02:55

That is the model that's breaking security down today because on average people have

02:59

50 to 70 different products in their cybersecurity stack.

03:02

Yeah.

03:03

And it's untenable to go out and manage that anymore.

03:05

Exactly.

03:06

The complexity is too high.

03:08

And so what needs to happen, and I think there's the shift that's occurring right now in the market.

03:13

We'd like to think we're one of the people that are driving it, but the shift that's occurring is

03:16

moving from a bunch of point solutions to integrated platforms.

03:21

And what that'll allow you to do is have a single policy engine.

03:26

It'll have a single kind of core design system.

03:31

And it's going to allow us to do things that we couldn't do before, largely because you

03:34

could correlate data sets that you weren't able to in the past.

03:38

If you think about 80% of the attacks that happen originate from email.

03:43

You get an email from some prince from some exotic country.

03:47

You're very polite.

03:48

Yep. And then they'll say, well, click on this link and you can download your $10 million.

03:53

It takes you to a website that didn't exist two hours ago.

03:57

From there, you actually download some malware.

03:59

That malware kicks off a process on your PC that then does lateral movement throughout

04:05

the entire network.

04:06

That is 80% of the attacks that happen today.

04:09

Now, what happens in those attacks and how the defenses work?

04:12

There is a company that does email protection.

04:15

There's a company that does web protection and DNS protection.

04:19

There's a company that's actually doing things around endpoint protection.

04:22

And then there's a company that's doing something on network.

04:25

Each one of them have their own telemetry.

04:28

And so an email that comes in gets passed as a low level alert.

04:32

And then a website that you go to might get passed as a low level alert.

04:36

And a process that got kickstarted on the endpoint might be tagged as a low level alert.

04:41

But if you put those three low level alerts together, that is a high level alert.

04:45

Low level alerts get ignored because of the signal and noise ratio being way off.

04:50

But a high level alert, you would do something about.

04:53

And that only happens when you actually start to correlate telemetry.

04:55

And that's the idea of data, right?

04:57

That's the idea of making sure that you have data across multiple control points,

05:01

email, web, network, identity, endpoint, that you can start to correlate together

05:07

and say what's anomalous versus what's normal behavior.

05:11

And when you start detecting patterns of legitimate activity

05:17

versus patterns of abnormal activity, you can then start to have a graduated set of

05:21

responses that you can apply to that.

05:23

Quarantine this.

05:24

Make sure that you kill this session.

05:26

Make sure that you actually have gone out and done a snapshot backup.

05:29

All of those things can start happening once you have that core set of, you know,

05:34

kind of indication that this is in fact a breach that's about to happen.

05:38

And therefore, I'm going to predict and prevent rather than just detect and respond.

05:42

But the problem people have, right?

05:44

Too much data, too much.

05:45

It's overload for a human.

05:46

Correct. That's where AI helps.

05:48

So up until now, we've not had a data scarcity issue.

05:52

We've had an issue of making deriving meaning from that.

05:56

And that's where AI can massively kind of bits of step function improvement.

06:00

So I know that I interviewed DJ, I believe, is in your team.

06:04

Love DJ, man.

06:05

On the firewall.

06:07

Like there's an assistant for a firewall.

06:08

Yes. Are we talking about that or is there more?

06:10

No. So what we're talking about on the firewall, so the way that we think about it is there's

06:14

three major objectives in security that we're trying to go out and solve.

06:17

First one is massively increase the efficacy of security.

06:21

Second one is make sure that your experience gets way better than what it is right now.

06:25

Yeah.

06:25

And then third one is make sure that the economics are contained so that you don't

06:28

end up spending more money.

06:30

Because right now, if you look at the trajectory over the past 15 years,

06:33

people have spent an inordinate amount of money in security.

06:36

And it's not effective because it's not.

06:38

It's not effective actually.

06:38

Yeah.

06:39

And so you have to do all these three at once.

06:42

In order to do all these three things at once, on the efficacy side,

06:46

what I'm talking about is a correlation of data.

06:48

Okay.

06:48

On the efficient experience side, what I'm talking is what DJ was talking about,

06:52

which is I can go out and set a policy in natural language.

06:56

And what that policy natural language is going to do is it's going to reduce the

07:00

dexterity that people need to go out and get certain things done.

07:03

And so then you actually can address the talent shortage.

07:05

Because right now, 4 million jobs just in the US go unfilled every year.

07:10

Millions go unfilled throughout the world.

07:12

And how can we go out and make sure that that changes quite dramatically?

07:17

Because if the attack rates keep going up and keep compounding,

07:23

and your talent shortage remains, you just by definition get weaker.

07:27

So you have to handle this at machine scale.

07:29

You can't handle it at the human scale.

07:30

So does Cisco just have AI on a firewall?

07:32

Is it bigger than that?

07:34

No, no.

07:34

So the beauty about this is we started with AI on the firewall,

07:37

but it was such a huge problem.

07:39

And we said, wow, firstly, wouldn't it be nice if you had the ability to have

07:45

natural language interface on every single product of ours?

07:48

So you can set policy.

07:50

You can do basic hygiene on policy.

07:52

So one of the demos we showed this morning at the keynote was the ability to say,

07:57

I've got 1200 rules in my firewall, but 350 of them are duplicates.

08:03

So what do I do?

08:04

Do I disable them?

08:05

Do I delete them?

08:06

In order to go out and even determine that in a reasoning engine,

08:09

when you're creating a rule, it would be something that right now is not something that people do.

08:13

And now this is something that you can do in a very easy way.

08:15

It's not only is it easier, it does more while making it a whole lot easier.

08:20

And so then the people that are working on these things,

08:22

it's not like you don't need them.

08:24

You will just be able to have them focus on higher order efforts rather than the things

08:29

that actually you use up a huge amount of cycles.

08:33

It requires a very high level of dexterity and isn't really progressing us as fast as we need

08:38

to progress.

08:38

We need all the human minds on the problem of security.

08:41

So one thing that I think people need to take away from this is

08:44

it's not that we're trying to eliminate jobs.

08:47

What we're trying to do is make sure that those jobs that are being done

08:51

can be done at a higher bandwidth so that the mundane work can actually happen

08:55

with the augmentation of a machine.

08:57

I mean, old people like me, you know, firewall...

09:01

You're still younger than me, which is really depressing.

09:04

Firewall rules are a nightmare, right?

09:06

CLI was difficult in the old days.

09:09

It's like assembly code.

09:10

That's right.

09:11

Yeah.

09:11

And I mean, you don't want to touch it because you might break it.

09:13

Yes.

09:14

So we need something...

09:15

And actually, the people that wrote the rules retired, the kids graduated from college.

09:19

Exactly.

09:19

And so now you've got...

09:20

There's companies we know that have millions of rules on the firewall.

09:23

And so what they do is because they don't want to break anything,

09:26

they just don't touch it.

09:27

Exactly.

09:27

And then at some point in time, that system which was designed for efficacy

09:32

is actually the most ineffective system that's out there.

09:34

I mean, you mentioned in your keynote, AI is not going to replace it.

09:38

Assist, I think, augment and automate, will you?

09:40

Assist, augment and automate.

09:41

So why we do...

09:44

Why we are using AI is to increase efficacy,

09:47

improve the experience and improve the economics.

09:50

How we do it is by assisting every human to actually have an assistant.

09:55

Yeah.

09:56

Augmenting so that the detection is going to happen at a much faster pace

10:02

and make sure that the human's in the loop and then automate certain tasks

10:07

that can be done so that humans can actually be graduated to doing better tasks.

10:10

Yeah, because the warrior's jobs, right?

10:12

Like you mentioned, and you've addressed that.

10:13

We just simply don't have the number of people to go out

10:16

and address the number of attacks that are happening.

10:19

And by the way, this is critical infrastructure

10:22

that's going to damage other critical infrastructure.

10:25

The thing that people...

10:26

It took a while for folks to realize is at this point,

10:30

think about it, warfare starts with cyber.

10:33

A hospital, people would lose their lives if a hospital got breached

10:37

because people wouldn't be able to get dialysis

10:41

or whatever the treatment is that they're looking to get.

10:43

Water supply can stop for a city.

10:46

You can have power grids completely stopped.

10:49

You can have the financial system stop.

10:50

Your healthcare system stops.

10:51

So there's a tremendous impact with that shortage of skill.

10:55

And we have to make sure that we actually get to that at machine scale.

10:58

So you've mentioned firewalls quite a bit.

11:01

There are other products, right, where the AI is involved in.

11:04

So our AI assistant actually manages all of our products.

11:08

So we started with firewall.

11:10

We just added secure access, which is our competitor, the SASE market.

11:15

And so you can actually go out and have policies that are set

11:18

with natural language in our secure access product.

11:21

We have announced a SOC assistant, which will come out later in the year.

11:25

We will have, we currently also have a documentation site for our,

11:31

if people want to find out exact documentation that,

11:33

how do you do this? How do you do that?

11:34

That's actually going to be in that that's available with an AI assistant.

11:39

And we will continue to keep adding email as well, right?

11:42

Yeah. So email has, we just announced today that email threat defense

11:46

will have some AI capabilities to do better detection of spam

11:50

and so on and so forth.

11:51

And so every single product will have different uses for it,

11:54

but we will make sure that AI gets injected across the board.

11:57

Because frankly, the way I think about it, security is a data game.

12:00

Yeah.

12:01

And you cannot make sense of data without having strong, robust AI models in place.

12:09

How do you get the data?

12:10

Is that perhaps related to the possible Splunk acquisition?

12:13

Splunk will definitely be one of the contributors of that.

12:15

And the way you think about this is, you know, we are a networking company

12:19

in order to be a great networking company, we have to be a great security company.

12:22

I love that. Yeah.

12:23

If you're going to be a great security company, you have to be a great AI company.

12:27

And you cannot be a great AI company if you're not a great data company.

12:30

And Splunk will definitely allow us to scale that to a very different level.

12:35

We can't talk much about that because we're in the regulatory approval process right now.

12:39

But in addition to Splunk, we just have to think about all aspects where we have telemetry

12:45

that can be pulled together.

12:47

We have data about every packet that flows through the network.

12:51

We have data about every email and every forward that happens.

12:54

We have data about every process that gets kickstarted on an endpoint.

12:56

We have data about every WebDNS query that gets made.

12:59

We have data about every identity, human or machine identity.

13:03

Now with the identity intelligence engine,

13:05

where you can tell whether or not there's anomalous behavior,

13:08

both reactively, David's doing something that seems out of character, or proactively.

13:15

I've got these three devices that I've never logged in for three years.

13:20

Maybe I should decommission those devices and instill a level of basic hygiene.

13:25

So all of those things, that telemetry, if we can take and start to correlate,

13:30

where there's magic that can happen.

13:31

And that's why I think there's an advantage to,

13:34

once you start really mining this data effectively for the customer being safe.

13:38

I'm going to push on that word mining because a lot of people may be concerned

13:44

about giving their personal data or confidential data to AI.

13:48

Yeah, so the way that we do it is firstly,

13:51

when you start thinking about the world of security,

13:55

it's slightly different in the sense that if there's an incident that's happening,

13:58

you want to know what that incident is so that others can actually get prevented from it.

14:03

But we don't use anyone's data.

14:07

So what I'm talking about is an instance that you would have with your data.

14:11

Okay, so it's personal to my company?

14:12

Personal to your company.

14:13

And you'll say, okay, here's your data.

14:14

Not like the typical check GBT thing.

14:15

No, no, no.

14:16

And so we would actually make sure that that's there.

14:18

But in security, in the world of security,

14:20

you typically have a pretty common practice of making sure that certain kinds of data

14:25

on incidents and breaches get shared with the community so that you know what's going on.

14:30

Otherwise, you're fighting against the adversary.

14:33

But the thing to keep in mind is this, what I'm talking about over here is largely for

14:38

like, one of our big core value systems is privacy.

14:43

And we think it's a basic human right.

14:45

And we should, if we ever used a data set to train the model,

14:50

there would be with explicit consent.

14:52

I mean, I suppose that's an advantage, right?

14:53

Because you've got AI for my company, but Cisco also have a lot of data from many people that

14:57

are perhaps sharing it with you.

14:58

So I think one of the concern is ChatGPT is like pulling data from the internet,

15:02

but that's very different to the AI that you're using.

15:06

Yeah, I mean, on the data side, like it's a very different thing from ChatGPT,

15:10

because in ChatGPT, for example, you would say, what's the weather like today?

15:15

With us, it's more around how do I go out and configure this policy?

15:20

And that's a very different kind of way that you've actually trained the model.

15:25

And it's a very constrained set of data that we've actually trained the model on.

15:29

It's called retrieval augmented generation, where you actually make sure that

15:33

you train the model based on a very specific custom set of data for that account.

15:37

And that's important because of hallucinations as well.

15:39

Yeah, hallucinations in ChatGPT is a feature, not a bug, right?

15:43

Because when you start thinking about it, in some cases, what ends up happening is

15:47

the creative personas.

15:50

If you think about how AI evolved, and Sam Altman had a great kind of thought over here

15:56

in one of the podcasts, he was in where he said that if you would have asked him five years ago,

16:01

seven years ago, how is AI going to evolve?

16:02

He would have said, it starts with the blue collar workers.

16:05

Yeah, exactly.

16:06

Right.

16:06

And then it's going to go to the knowledge workers and then to the super high creatives.

16:10

It's actually turned out exactly the opposite.

16:12

Exactly.

16:12

Yeah.

16:12

Why is that?

16:13

Part of the reason is because hallucination actually helped in actually creating the

16:19

creative wandering that can happen.

16:21

That does not work in security.

16:22

I was going to say.

16:23

I can't hallucinate about a firewall policy I want to implement.

16:26

Exactly.

16:27

So it has to be pretty precise.

16:29

So what we do is we actually create a...

16:34

The way in which you train the models is very decent.

16:36

I think another misconception people perhaps have is just because of ChatGPT, they think

16:40

it's just an assistant or an interface, but like on the firewalls, you've got the assistant,

16:44

but you've also got EVE, right?

16:46

Yes.

16:47

Can you just explain that and how perhaps AI is doing similar things on other products?

16:51

So I think generative AI through transformers is one dimension of AI that actually has gotten a

16:57

lot of popularity because of ChatGPT over the course of the past year.

17:00

I think it's fantastic because what it's done is it's allowed us to, as humans, communicate

17:05

with a machine without learning the language of the machine, but actually requiring the machine

17:10

to learn the language of humans, which is great.

17:12

This is the first time that's happened.

17:13

But that's the transformer side and that's the understanding of natural language.

17:19

There's a bunch of other areas in machine learning and AI

17:23

which actually have little to do with language expertise.

17:27

And more to do with detecting anomalies and making sure that you can find patterns of behavior.

17:32

And so encryption visibility engine is a really interesting problem to solve because

17:38

that we solved with the encryption visibility engine, because if you think about majority of

17:42

the traffic today is encrypted.

17:45

It's a problem.

17:46

And so we used to have this technology, we have this technology in firewalls called deep

17:50

packet inspection, where you can actually go and inspect a packet to know if there's malware inside

17:54

that packet.

17:55

And if there is, then you can intercept or block it.

17:57

Now, if everything's encrypted, there's no way for you to tell.

18:02

So the only way you can tell is by inferring based on the movement of the packet and whether

18:07

or not it's anomalous behavior.

18:09

And that's what EVE does.

18:11

And that's actually a pretty major step function improvement in driving efficacy once again.

18:17

So what you'll see is we're doing one of three things.

18:20

Something like Eve drives efficacy.

18:22

Something like AI assistant drives the experience.

18:27

And it also drives the economics.

18:29

And so those are the ways that we kind of think about it.

18:31

So EVE kind of like, I don't want to put it, I'm not quite sure how to say it, but like the EVE

18:36

kind of technology perhaps will be used on email and other spheres as well.

18:39

It'll be used across the board.

18:41

EVE itself is being used in the firewall largely.

18:44

Yeah, but like a similar kind of concept.

18:47

The concept of empowering these different tools with strong AI that's not generative in nature,

18:54

but strong AI and also machine learning aspects.

18:57

That's something we'll have in every single one of our products.

19:00

And if you think about our AI team and you said you spoke to DJ, we bought his company

19:07

and they actually are driving all of our AI efforts right now.

19:10

And that company is actually getting funded quite aggressively so that we can hire more

19:13

and more people.

19:14

We need PhDs and researchers and developers and all different kinds of people in AI.

19:20

And we will continue to keep making sure that the clock speed of innovation over there

19:24

is very, very high.

19:25

So I'm glad you mentioned that because looking forward, where do you see things going?

19:30

Because I think a big concern for people who are moving into this industry or interested in this

19:34

industry or perhaps younger is it's pointless.

19:37

AI is going to take my job away.

19:38

There's no future in this.

19:39

Or can you address that?

19:41

And also like, where do you see things going?

19:42

Just to give people a roadmap and like sort of a vision.

19:45

Yeah, I think in my mind, I think human judgment is going to be pretty important for the foreseeable

19:49

future.

19:50

And now that I am completely wide-eyed about the fact that there's some upside in AI, but

19:56

there's also going to be a significant downside to humanity.

19:59

And I think we can go into the areas of regulatory kind of aspects that need to be.

20:05

And we should talk about that a little bit.

20:06

But when you start thinking about specifically, you know, new talent coming in, the addressable

20:14

market for security is 8 billion people, right?

20:16

Every human on the planet is going to be connected and every human on the planet needs to be

20:20

secured.

20:20

Yeah, we need more people from diverse backgrounds to come into this industry.

20:25

This industry is very homogeneous on multiple dimensions, largely male dominated, largely a

20:32

technical audience, very jargon fill.

20:36

They actually, the industry has made it very intimidating for someone that doesn't know

20:40

security to say, what do I do with security?

20:42

Exactly.

20:43

I think we have to make sure that we remove that friction.

20:45

And that requires, if you're going to build products for 8 billion people, you better

20:49

have the group that's building products be representative of the population makeup of

20:54

the 8 billion people that you're building products for.

20:57

By definition, if you don't have half the people that are women, you're probably not

21:00

going to be as effective for the people that you're building them for.

21:02

We need more people who are women in this industry.

21:04

We need more people with liberal arts backgrounds.

21:07

I would love to have more people with a design background.

21:09

I would love to have more people with backgrounds that come from the consumer tech industry.

21:13

Like I, you know, one of the things that I've always asked my teams is hire people sometimes

21:18

from Spotify because they know how hundreds of millions of people can actually turn on

21:24

us all with a couple of clicks.

21:27

I read a blog, I think you wrote about like the interface is important or you said something

21:30

about like the interface is so important.

21:32

It's like historically me going back to Cisco many years.

21:35

Cisco weren't well known for that.

21:37

One of my commitments I've made to Chuck is, hey, when you think about Cisco and you see it,

21:44

you know, fast forward five years, 10 years, what I'd like to leave this company in the

21:48

hands of the next generation is going to be running it is to be one of the most designed

21:52

forward companies only second to Apple.

21:54

That's correct.

21:55

In fact, I admire Apple so much for what they've done with all of their products.

22:00

And the great part is we have a great partnership with them.

22:03

They happen to be, you know, they were here at the event and we had a fireside chat with

22:07

them and we've actually just built a product on the collaboration side of the house with Vision

22:12

Pro.

22:12

And I would love to have that same kind of obsession on finesse that's instituted in enterprise

22:18

products as it was in consumer products.

22:20

And you're starting to see that now.

22:22

And so all the new products that we have coming out, they're beautiful to use and they're not

22:26

overly complex.

22:27

And we'll make them we'll keep chipping away them and make them simpler and simpler and

22:30

simpler as time goes on.

22:31

Like, you know, if you think about passwordless, you think about, you know, all of the things

22:37

that we're doing with SSE, we try to make the demos for the end user the most boring demos.

22:43

Yeah.

22:44

Because that means that you don't have to do much.

22:46

It's just invisible.

22:47

And behind the scenes, it just works.

22:49

I think the concern with AIs, do I need a PhD?

22:51

A lot of guys in the beginning needed PhDs and like all this kind of knowledge.

22:55

But do you see like the teams that you're hiring?

22:57

Are you hiring all kinds of different types of people at different levels?

23:00

Not just PhD people for AI?

23:01

Yeah. I mean, look, I think there's a tremendous role that AI researchers and PhDs play, but

23:06

that's not the only role.

23:08

Yeah.

23:08

Right.

23:09

And anything that's a transformative platform, which I think AI is probably the most wide

23:16

transformation we will have seen in our lifetimes.

23:19

You know, it's the most consequential one.

23:21

You're going to need people from all walks of life.

23:24

And you're going to need people that deeply understand the tech.

23:27

You need people who deeply understand the limitations of the tech.

23:30

You need people who deeply understand the human dynamic.

23:35

And many, many other kinds of vocations that you're going to need.

23:37

So I personally feel like the kind of people we're going to need, we just have to make

23:42

sure that the kind of people we attract to these fields keep a level of diversity to

23:48

effectively address development of products for the target market.

23:52

You introduced yourself as Jeetu, but how do I know that you actually are Jeetu?

23:57

You know, the identity is one of the biggest attack vectors that's actually emerging right

24:05

now. And it's already emerged, frankly.

24:06

Yeah.

24:07

And so many people say identity is a new perimeter.

24:09

Many people say it's one of the largest attack vectors.

24:11

And what you've seen as a challenge with identity so far, firstly, anyone who goes

24:16

out and tries to tackle the identity problem tries to go out and provide you with another

24:20

an IDP.

24:20

Yeah.

24:21

An identity provider.

24:22

They become an identity provider.

24:23

Our goal is I don't think the world needs yet another active directory.

24:28

I don't think the world needs yet another LDAP.

24:29

We don't need another identity provider.

24:32

We've got plenty of them.

24:33

We need to make sure that we have a thin analytics layer that sits on top of the IDPs

24:38

that can take the data for users, for machines, for applications, and then correlate that

24:44

data together.

24:44

Right.

24:45

And so we launched this identity intelligence layer, which I think is fundamentally going

24:50

to change how every application and every platform can get hydrated with identity

24:56

intelligence so that we then are able to take that data and not just apply enforcements

25:02

for identity at the point of authentication, but do it on a continuous basis based on

25:08

behavior and context.

25:09

So David logged in.

25:11

Yeah.

25:12

But he's doing something funny with customer database.

25:15

That's not what David typically does.

25:17

Maybe I need to quarantine that.

25:18

Yeah.

25:19

Maybe I have a honeypot that I create so that I can let it keep going for a while to see

25:23

what's happening without actually killing the session so that I see if I can actually

25:28

catch someone doing something wrong.

25:30

But those are the kind of things that we have to actually create.

25:33

One is you have to have a better mechanism for detecting post authentication, how anomalies

25:40

are occurring, and then based on that, have a graduated set of responses against that

25:46

potential threat and also apply hygiene measures so that you can say, well, these are three

25:51

devices, like I said earlier, that have never been used before.

25:55

Let's decommission them.

25:57

I was doing a POC on Zendesk and I was actually connecting that to my Salesforce account.

26:03

But then we decided we are not going to do anything with the POC.

26:06

And then I still have that account connected to my Salesforce account.

26:10

That doesn't seem like the right thing to do.

26:11

I need to make sure that I killed that connection.

26:14

And so what are those kinds of things that we need to have really come up and surface up?

26:19

That's what we're trying to do.

26:20

Is it fair to say that the future of cybersecurity is AI?

26:24

The future of cybersecurity is going to be powered by AI and anyone that thinks otherwise

26:28

is not going to have an effective platform for security.

26:30

Jeetu, I really want to thank you for sharing.

26:32

I know you got to go.

26:33

Thanks so much.

26:34

Appreciate it.