AI for smarter security
A I • Aug 12,2024
Summary:
The university implemented a centralized AI platform capable of providing advanced logging and monitoring of 84,000 devices across the campus.
Client:
California State Polytechnic University, Pomona (Cal Poly Pomona), founded in 1938, is a renowned polytechnic university that emphasizes experiential learning and hands-on discovery.
Problem Statement:
Securing the extensive network at Cal Poly Pomona, which spans a large physical area and supports a vast number of users, posed significant challenges for the school’s IT security resources. To overcome these challenges, the university sought to implement a centralized security information and event management (SIEM) platform capable of providing advanced logging and monitoring capabilities.
Results:
- Monitors 84,000 devices across the campus.
- Provides comprehensive visibility into the entire campus network.
- Consistently reduces potential alerts each day to 20-40 actionable items for investigation.
- Generates 44 GB of logs and reports daily, streamlining compliance and auditing processes.
- Enhances the detection of attacks targeting previously unknown vulnerabilities, including advanced persistent threats.
AI Solution Overview:
The school partnered with IBM and its AI-enhanced QRadar SIEM system to develop a solution. Once trained, IBM’s AI analyzed and categorized alerts, pinpointing potential threats and clearly identifying what required human attention.
IBM’s intelligent systems can recognize signs of targeted attacks or other suspicious activities, bringing potential threats or vulnerabilities to the surface along with detailed information, making investigations faster and easier. This approach allowed the IT team to effectively protect the networks without becoming overwhelmed.
QRadar SIEM enables Cal Poly Pomona to centralize, normalize, and analyze data from over 84,000 devices, using machine learning and behavior analytics to detect potential threats. This process generates approximately 44 GB of logs and reports daily, simplifying compliance and auditing from a forensic perspective.
References:
- Cal Poly Pomona focuses its cybersecurity operations with IBM Security QRadar SIEM. https://www.ibm.com/case-studies/cal-poly-pomona
- 5 AI Case Studies in IT. https://www.vktr.com/ai-disruption/5-ai-case-studies-in-it/
Industry: Educational Services
Vendor: IBM
Client: California State Polytechnic University, Pomona
Previos Article AI Chatbot for schools
Next Article AI Chatbot for a central bank in Europe