Mientras DISA se prepara para la amenaza inminente de China , la agencia estableci\u00f3 un objetivo ambicioso de tener el 75 por ciento de sus capacidades de ciberseguridad de tipo administrativo completamente automatizadas por inteligencia artificial.<\/p>\n
TECHNET CYBER 2024 \u2014 As DISA prepares for the looming<\/a> threat of China<\/a>, the agency set an ambitious goal of having 75 percent of its administrative-like cybersecurity capabilities completely automated by artificial intelligence<\/a>, Brian Hermann, cybersecurity and analytics director at DISA<\/a>, told a media roundtable Tuesday.<\/p>\n \u201cThe only way that we can actually do our job with the pacing threat of China<\/a> is to actually add that automation capability so that that the human analysts can take advantage of their brainpower to actually do the high-end fight stuff, not just the day-to-day normal stuff that happens all the time,\u201d he said here at the TechNet conference in Baltimore.<\/p>\n \u201cSo I think that it\u2019s an aggressive goal for us, but it\u2019s something that we\u2019re working hard to get after as well.\u201d<\/p>\n Hermann added that though there is no defined timeline for completing this automation goal,\u00a0\u201cit\u2019s not where it needs to be.\u201d<\/p>\n However, he explained that DISA is making strides toward this goal by streamlining data into a collective space where it was created, instead of in separate silos.<\/p>\n \u201cOur data analytics team has been creating a data lake architecture that allows us to have the data where it\u2019s essentially created. If you think about this, it connects back to the DoD cloud strategy [Joint Warfighting Cloud Capability<\/a>]. We have four primary cloud service providers under [JWCC] and so we\u2019re creating the lake of data in the environment where the cybersecurity tools are providing, so it\u2019s not going to generate a lot of exfiltration costs or transition costs,\u201d Hermann said.<\/p>\n The creation of this data \u201clake architecture\u201d was DISA\u2019s next step after it sunset its Big Data Platform (BDP) in two parts that took place last year and earlier this year. With the BDP, DISA\u2019s data was separated from each other, making it harder to eventually automate. Now, with the data moving toward being all in one place, DISA can move toward automation.<\/p>\n Hermann said DISA also plans for this central architecture to have a feature where users can log into one data-centric environment instead of having to use several tools to log into various databases\u00a0to find a specific piece of data.<\/p>\n \u201cThe message that I got loud and clear from our analysts was that we\u2019ve created a number of different silos, [and] that generated the need for them to log into a lot of different environments to do their job on a day-to-day basis. We\u2019d like to have a more federated approach where they log into one portal and they\u2019re able to get access to all the data, get all the insights that they need,\u201d Hermann said.<\/p>\n Another benefit of this data-centric layout, Hermann explained, is that zero trust<\/a> can be more easily implemented, since all the data is in one place, the necessary security precautions have the potential to be interoperable.<\/p>\n \u201cWe had protections at the local user\u2019s desktop station, we had firewalls that existed at the various parts of our infrastructure, and they didn\u2019t really talk to each other very much. So now, that\u2019s the difference, they\u2019re starting to talk to each other,\u201d Hermann said.<\/p>\n