Threat Stack is now F5 Distributed Cloud App Infrastructure Protection (AIP). Start using Distributed Cloud AIP with your team today.
Supervised Learning is a machine learning approach used for classification and prediction across data sets – and can be a huge boost in the world of cloud security. As security teams continue to deal with a cloud-based approach to business and remote-working challenges, an increasing recognition is surfacing: Using only unsupervised learning to protect cloud-native infrastructure. As vulnerability, threat, and attack parameters become increasingly sophisticated, so too must intrusion detection.
Enter Supervised Learning
According to Chris Ford, RVP Engineering at Threat Stack, an F5 company, there needs to be more than just capturing and pointing out outlier behavior. “Supervised learning makes predictions on behavior and delivers the most relevant alerts to a security team.”
Simply having anomaly detection isn’t enough. Supervised learning can surface “the bad in the normal,” or in other words, deliver the most relevant and prioritized alerts to SecOps, DevOps, and other cloud security teams, allowing them to focus on what’s vital. Supervised learning is a prioritization engine that gives a security team the confidence that they are addressing only the most pressing threats to the business.
On-Demand Webinar about Supervised Learning in Cloud Security
Supervised ML or Deep Learning is so new in the cloud-security industry, it’s only starting to be realized and discussed. Chris Ford recently presented an in-depth webinar on how organizations can access the benefits of supervised learning to automate and reduce human toil in cloud security, through tuning, training, triage, and review of alerts that come through automation.
In the webinar, Ford outlines how combining detection techniques allows you to reduce human toil in cloud security, without missing behaviors that are critically important. It’s available now for viewing: Machine Learning Done Right: Secure App Infrastructure with High-Efficacy Alerts
Why Supervised Learning is Vital in Cloud Security
Modern cloud security should not just be about eliminating false positives, but going a step further to catch and learn from false negatives. It’s not just reducing alerts or cutting down “alert noise.” And it’s not just about anomaly detection. By using supervised learning in our ThreatML SaaS, Threat Stack delivers high-efficacy alerts that surface only the behavior that is most important to your organization – with the context needed to take the right action immediately.
In other words, organizations looking to keep up with dynamic attacks to their environments need detection models that learn and adapt to these needs – exactly what Threat Stack offers through ThreatML.
Bottom line is that supervised learning in cloud-native security leads to high-efficacy detection through vulnerability and threat prediction, striking a balance between operational burden and reducing toil, yet having comprehensive threat detection.
For more information on how Threat Stack’s unique application of supervised machine learning can help your organization, contact us today.
Threat Stack is now F5 Distributed Cloud App Infrastructure Protection (AIP). Start using Distributed Cloud AIP with your team today.
About the Author
Related Blog Posts
F5 accelerates and secures AI inference at scale with NVIDIA Cloud Partner reference architecture
F5’s inclusion within the NVIDIA Cloud Partner (NCP) reference architecture enables secure, high-performance AI infrastructure that scales efficiently to support advanced AI workloads.
F5 Silverline Mitigates Record-Breaking DDoS Attacks
Malicious attacks are increasing in scale and complexity, threatening to overwhelm and breach the internal resources of businesses globally. Often, these attacks combine high-volume traffic with stealthy, low-and-slow, application-targeted attack techniques, powered by either automated botnets or human-driven tools.
F5 Silverline: Our Data Centers are your Data Centers
Customers count on F5 Silverline Managed Security Services to secure their digital assets, and in order for us to deliver a highly dependable service at global scale we host our infrastructure in the most reliable and well-connected locations in the world. And when F5 needs reliable and well-connected locations, we turn to Equinix, a leading provider of digital infrastructure.
Volterra and the Power of the Distributed Cloud (Video)
How can organizations fully harness the power of multi-cloud and edge computing? VPs Mark Weiner and James Feger join the DevCentral team for a video discussion on how F5 and Volterra can help.
Phishing Attacks Soar 220% During COVID-19 Peak as Cybercriminal Opportunism Intensifies
David Warburton, author of the F5 Labs 2020 Phishing and Fraud Report, describes how fraudsters are adapting to the pandemic and maps out the trends ahead in this video, with summary comments.
The Internet of (Increasingly Scary) Things
There is a lot of FUD (Fear, Uncertainty, and Doubt) that gets attached to any emerging technology trend, particularly when it involves vast legions of consumers eager to participate. And while it’s easy enough to shrug off the paranoia that bots...