CrowdStrike Advances Cyber-Security Automation to Aid Forensics

There is an increasingly common trend in the cyber-security industry to integrate automation approaches to help identify and remediate threats. According to Dmitri Alperovitch, co-founder and CTO of CrowdStrike, while automation is important, it's not likely to replace the need for human cyber-security analysts any time soon.

In a video interview with eWEEK, Alperovitch discusses his company's CrowdStrike Falcon platform and its latest module called Falcon X which aims to simplify the cyber-security analyst workflow. Falcon X integrates automation to help accelerate cyber-security analyst efficiency. Though CrowdStrike makes broad use of machine learning and automation capabilities in its platform, Alpervoitch emphasized that human analysts are still the key to dealing with modern threat adversaries.

"Cyber-security will be the last industry in technology to get automated, in my opinion," Alperovitch said. 

Alperovitch added that humans will still be critical to the decision making loop in cyber-security, since unlike other industries, cyber-security isn't dealing with a set of static problems.

"We're dealing with sentient opponents that are looking at everything that we do, figuring out the holes in our approach, the weaknesses and are working hard to exploit them," Alperovitch said. "We need the best humans at our end to counter that."

Alperovitch said CrowdStrike uses machine learning technologies across the Falcon platform and has embraced automation, but at the end of the day, it's all about enabling the human to be able to make decisions faster and empowering them with more information.

"It's not about taking the human out of the loop," he said.

Watch the full video interview with Dmitri Alperovitch above.

Sean Michael Kerner is a senior editor at eWEEK and Follow him on Twitter @TechJournalist.