When analyzing the recent key trends in cybersecurity and guiding the actions that CISOs should take to enable a secure journey of generative artificial intelligence in their organizations, experts who participated in the Gartner Security & Risk Management Summit, an event held in Sydney, Australia, emphasized that this new technology will require additional care and the development of new cybersecurity features, potentially resulting in an increase of up to 15% in cybersecurity investments.
Speaking on the matter, Gartner Senior Director Analyst Richard Addiscott explained that CISOs need to update their application and data security practices to integrate new attack surfaces, such as prompts or orchestration layers, to instrument AI models.
For Fernando Guimarães, Head of Stone Age, the Credit and Anti-Fraud business vertical of TIVIT, the estimate may be conservative as, beyond the need to protect applications working with generative AI, there is a trend for generative AI to be increasingly integrated into tools for combating fraudsters. The benefits of generative AI are undeniable and have enormous growth potential; however, these benefits must be accompanied by careful cybersecurity investments. “The net result will be mostly positive in most cases, but there is no free lunch,” Guimarães states.
He comments that this move was made by Stone Age itself with the incorporation of the generative artificial intelligence solution Athena, developed by TIVIT in its solutions. In early 2024, the technology began to be offered as a new feature in Identify, a product focused on identity validation for onboarding and sales processes.
Launched last December by TIVIT, Athena allows Identify to intelligently read the data of a social contract in 30 seconds automatically, among other things. In addition, extracting structured information from these documents, which immediately turns into collaborative insights to feed the data stream that enables more effective and faster decision-making.
Guimarães comments that the adoption of Athena gives Identify new features that make the tool usage journey much more complete. In practice, according to him, the company now has a 2.0 version that can advance towards operational efficiency, with reduced manual intervention, increased decision-making accuracy, as well as working on cost reduction, with the feasibility of working with smaller support and analysis teams.
“I believe that this type of gain can be spread to various other solutions in the market. Therefore, considering the benefits brought by Generative AI for cybersecurity, increasing investments to enhance the use of this technology becomes fully justifiable,” he concludes.
An alternative for using AI more securely is to use solutions that are customizable to the company’s needs. According to Daniel Galante, CCO and CPO of TIVIT, AI has come to make processes and companies more agile; however, it is necessary to use it very assertively. “Imagine a large law firm that serves important clients, and all lawyers are entering data on clients and cases in a 100% open environment, which could become public. This could generate a major problem, exposing this data to the general public. One alternative to this is to use a Generative AI that is customizable, like Athena, for example, where the client can select which databases to query, make all data exposed only in predetermined locations, and have restricted access to those who actually need it. This is the best way to use AI, leveraging its agility benefits while ensuring the necessary security for a process like this,” says Galante.
