SecurityBrief New Zealand - Technology news for CISOs & cybersecurity decision-makers
Story image
Aqua Security unveils AI-guided remediation for vulnerability response
Wed, 2nd Aug 2023

Cloud native security provider Aqua Security has announced enhancement of the Aqua cloud security platform with the availability of AI-guided remediation capabilities. 

The capabilities mean overburdened security teams can better operationalise risk findings to rapidly reduce risk and help developers quickly fix issues, Aqua Security says.

According to the Cybersecurity and Infrastructure Security Agency, adversaries exploit a vulnerability within 15 days (on average) of discovery, putting an organisation at risk for nefarious activity. This window of exposure combined with an overwhelming volume of alerts amplifies the need for all organisations to reduce mean time to remediation (MTTR).

"Cyber threats evolve faster than ever, and security practitioners are increasingly challenged to identify and quickly resolve critical issues," says Amir Jerbi, Chief Technology Officer and Co-Founder, Aqua Security.

"With Aqua Security's AI-guided remediation, were empowering security teams to expedite the resolution of vulnerabilities and misconfigurations," he says. 

"This not only enhances cloud security, but it also fosters collaboration between developers and security experts, ensuring a more resilient and secure ecosystem."

With step-by-step instructions on how to fix the issue, Jerbi says it dramatically reduces the MTTR for security teams and reduces risk exposure, removing the hassle of manually finding advisories, the associated patches and verification steps.

"AI-guided remediation eliminates the guesswork, searching and self-education time, and it allows the developers to focus on completing the fix rather than trying to figure out how to complete it," he says.

Leveraging AI-guided remediation, dev and security teams can automatically generate prescriptive remediation steps for any misconfigurations and vulnerabilities across multiple clouds and workload types.

As part of a comprehensive security platform with dev security, Aqua provides consistent information to dev and security teams within Aqu's cloud native application protection platform (CNAPP), the Aqua cloud security platform.

Back in June, Aqua Security announced support for Amazon Security Lake from Amazon Web Services (AWS), which is now generally available.

The integration delivers the industry’s most comprehensive cloud native security data to Amazon Security Lake to help security teams accurately determine their risk posture and more quickly mitigate issues.

Aqua’s cloud native application protection platform (CNAPP) delivers the richest data to help companies secure the entire application lifecycle. Its integration with the Security Lake utilises the open cybersecurity schema framework (OCSF), which allows security teams to collect data from various sources and correlate it with their sources to get an enhanced security evaluation and reduce the time to detect issues and resolve them.