The 2024 AI opportunity study by IDC found that generative AI usage jumped from 55 to 75 per cent between 2023 and 2024. As AI adoption accelerates, businesses need to proceed with caution, particularly when it comes to security. Todd Fortwengler, director of security at Coretek, is helping firms safeguard their data, identities and systems as they invest in AI.
What are the most important things to consider when planning to adopt AI?
The first step is choosing a technology partner to identify AI use cases and drive rapid efficiencies using both custom-built and ready-made AI platforms to achieve organisational goals.
The next, and possibly most important, step is to secure your data estate. It’s also essential to organise the ongoing management of threat detection and rapid response. We believe Microsoft is the right platform provider and Coretek is the trusted partner to get you there.
What foundational steps should an organisation take to integrate AI securely into its data security framework?
First, I would emphasise the importance of carrying out a comprehensive assessment that covers data security, identity protection, device security, servers and identities. Conducting a thorough assessment of the current security posture is essential too. This involves evaluating existing security measures, identifying potential vulnerabilities and understanding the organisation’s readiness for AI adoption. It’s important to establish a clear baseline to measure progress and identify areas that need improvement.
For example, devices play a significant role in data security. Ensuring that all devices connected to the network are secure and compliant with security policies is vital. This includes implementing endpoint protection solutions and regularly updating software to protect against vulnerabilities.
When it comes to data, it’s important to classify and tag data based on its sensitivity and importance. This helps in applying appropriate security measures to protect critical data assets. In addition, leveraging Microsoft Purview for governance along with data encryption, both at rest and in transit, should be a standard practice to safeguard data from unauthorised access.
Servers are the backbone of any IT infrastructure and securing them is paramount. This involves implementing strong authentication mechanisms, regularly patching and updating server software, and monitoring server activities for any signs of compromise. Additionally, employing AI-driven security solutions can help in detecting and mitigating threats in real time.
Lastly, managing identities is crucial for maintaining a secure environment. Implementing identity and access management (IAM) solutions ensures that only authorised users have access to specific resources. Multifactor authentication (MFA) adds an extra layer of security, making it more difficult for attackers to gain unauthorised access.
By addressing these key areas, firms can create a solid foundation for adopting AI along with their data security strategies. This comprehensive approach not only enhances security but also ensures that the organisation is well prepared to leverage the full potential of AI technologies.
Which key Microsoft security solutions power Coretek’s CoreDefend offering, and how do they enhance AI-driven data security?
Coretek’s CoreDefend 360 is a managed security services offering, which uses Microsoft security solutions including Sentinel, Purview, Defender XDR (Extended Detection and Response) and Defender for Identities.
Microsoft Sentinel is a critical component of CoreDefend. It offers AI-driven monitoring and threat detection, providing real-time visibility into potential security threats. Sentinel’s advanced analytics and machine learning capabilities enable proactive threat hunting and rapid incident response, ensuring that threats are identified and mitigated before they can cause significant damage.
Microsoft Purview plays a vital role in data governance and protection. By leveraging Purview, CoreDefend ensures that data is classified, tagged and protected based on its sensitivity and importance. This helps in applying appropriate security measures and maintaining compliance with regulatory frameworks.
Microsoft Defender XDR is another essential technology within CoreDefend. Defender XDR provides comprehensive protection across endpoints, networks and cloud environments. It integrates seamlessly with other Microsoft security solutions to deliver a unified security experience, enabling organisations to detect, investigate and respond to advanced threats more effectively.
Meanwhile, Microsoft Defender for Identities focuses on identity protection, which is crucial for maintaining a secure environment. By implementing IAM solutions, CoreDefend ensures that only authorised users have access to specific resources. MFA adds an extra layer of security, making it more difficult for attackers to gain unauthorised access.
Coupled with security operations centre and security orchestration, automation and response platforms and services from Coretek, these technologies work together to deliver real-time threat intelligence, threat hunting, comprehensive data protection and secure identity management. This ensures that organisations can achieve enterprise-grade security and compliance without the operational burden of managing their own security operations centre.
How should businesses address potential challenges and risks associated with AI adoption and ongoing risk mitigation?
Businesses should take a proactive and comprehensive approach. At Coretek, we believe that building a trusted partnership with our clients is key to navigating these complexities effectively.
One of the critical aspects of risk mitigation is ensuring that AI systems themselves are secure. This includes implementing robust security measures to protect AI models from adversarial attacks, data poisoning and other threats. At Coretek, we leverage advanced AI-driven security solutions to monitor and safeguard your AI use cases and systems in real time, ensuring they remain resilient against evolving threats.
Another important consideration is data governance. Organisations must ensure that data used for AI training and operations is properly classified, tagged and protected. Coretek uses Purview to provide comprehensive data governance and protection, ensuring compliance with regulatory frameworks and safeguarding sensitive information.
Ongoing risk mitigation requires continuous monitoring and adaptation. Coretek’s CoreDefend Managed Security uses Sentinel, enabling firms to proactively identify and respond to potential threats, ensuring that their AI systems remain secure and compliant through continual adaptation.
Discover more insights like this in the Spring 2025 issue of Technology Record. Don’t miss out – subscribe for free today and get future issues delivered straight to your inbox.