Leveraging Artificial Intelligence Capabilities for Real-Time Monitoring of Cybersecurity Threats
Studies in Computational Intelligence
ECU Security Research Institute / School of Science
The number of cybersecurity incidents perpetrated by adversaries using modern complex and emerging technologies is growing exponentially. To curb this threat, advanced countermeasures need to be developed and implemented to mitigate cybersecurity incidents and detect the activities of adversaries. Developing advanced, innovative, and effective countermeasures is a challenge when faced with a daily tide of cybersecurity threats and concomitant vulnerabilities which, in most cases, have significant consequences to organisations. Artificial Intelligence (AI), which has specific, established use-cases in the cybersecurity domain offers promising solutions. This chapter examines how AI can enhance the real-time monitoring of cybersecurity threats in different environments. As a result, different cybersecurity threats, as well as commonly exploited cybersecurity vulnerabilities, are described and discussed in this chapter. Following this, some current real-time cybersecurity monitoring tools are discussed. Finally, the chapter highlights the role of AI in real-time monitoring focusing on how Explainable Artificial Intelligence (XAI) can be used to enhance real-time monitoring of cybersecurity threats which has become a crucial component of modern-day security implementations.