Vantage IQ is built to enhance threat detection and remediation with AI-assisted data analysis to help security teams reduce cyber risks across IT, OT, and IoT devices. Credit: Shutterstock Nozomi Networks has announced the upcoming release of Vantage IQ, a new AI-based analysis and response engine designed to address security gaps and resource limitations in critical operational infrastructure. The new offering will be available from Q3 2023 as an add-on to Vantage, Nozomi Networks’ SaaS-based security management platform. It is built to enhance threat detection and remediation with AI-assisted data analysis to help security teams reduce cyber risk and response times, the firm said.Critical infrastructure is a prime target for cyberattacks, particularly during periods of geopolitical tensions with state-backed actors posing significant threats. Securing national critical infrastructure (CNI) and improving its cyber resilience is therefore high on the agenda for organizations, governments, and industry collectives.Vantage IQ centers on autonomous analytics, intelligence across IT, OT, IoT devicesVantage IQ focus on security analytics and automation, giving users the ability to understand what’s happening across a network of IT, OT, and IoT devices, extract process intelligence and priority tasks expanding networks and data sources, and lower response times with deeper insights, correlation, and actionable intelligence, according to a press release. Key features in Vantage IQ include: AI-powered insights via Vantage IQ’s Insights Dashboard show alerts that are automatically correlated, prioritized, and supported with root cause information. Deep neural networks identify activity patterns in network data, with data correlated to streamline forensic analysis, tuning, and security enhancements.AI-based query and analysis help users gain a deeper understanding of their environment using natural language queries that answer common questions about vulnerabilities, network assets, and other environmental details.Advanced predictive monitoring strengthens operational resiliency and prevents system outages with early warnings that system behaviors are deviating from the norm. The Time Series feature augments Vantage’s ability to alert to changes in the network with an additional level of alerting on unusual changes in the bandwidth of activity going through the sensors monitoring those networks. In the future, Vantage IQ will also alert on process variables enabling even great levels of predictive monitoring and maintenance.Securing critical infrastructure high on the agendaLast month, leading cybersecurity response firms Accenture, IBM, and Mandiant joined the Elite Cyber Defenders Program – a new, collaborative initiative designed to help secure critical infrastructure. Led by Nozomi Networks, the program aims to provide global industrial and government customers access to strong cybersecurity defense tools, incident response teams, and threat intelligence.In April, the US Cybersecurity and Infrastructure Security Agency (CISA) published seven advisories covering vulnerabilities in industrial control systems (ICS) and supervisory control and data acquisition (SCADA) software from multiple vendors. Some of the flaws were rated critical and two had public exploits. In the same month, the UK National Cyber Security Center (NCSC) issued an alert to CNI organizations warning of an emerging threat from state-aligned groups, particularly those sympathetic to Russia’s invasion of Ukraine. The alert stated that newly emerged groups could launch “destructive and disruptive attacks” with less predictable consequences than those of traditional cybercriminals, with CNI organizations strongly encouraged to follow NCSC advice on steps to take when cyber threats are heightened. Meanwhile, the hacking group responsible for the supply-chain attack targeting VoIP company 3CX also breached two critical infrastructure organizations in the energy sector, with one located in the US and the other in Europe, Related content news analysis Rise of zero-day exploits reshape security recommendations Research from Rapid7 shows a spike in zero-days contributing to quicker exploit timelines, leaving IT security teams under strain with a greater need for post-incident response. By Lucian Constantin May 22, 2024 7 mins Incident Response Zero-day vulnerability Security Practices opinion Reducing CSO-CIO tension requires recognizing the signs Given competing pressures and priorities, CIOs and CISOs often find themselves at odds. Knowing where tensions flair and how your partner operates is essential to maintaining a productive partnership. By David Gee May 22, 2024 6 mins CIO CSO and CISO IT Leadership brandpost Sponsored by Cyber NewsWire Memcyco Report Reveals Only 6% Of Brands Can Protect Their Customers From Digital Impersonation Fraud By Cyber NewsWire - Paid Press Release May 21, 2024 4 mins Cyberattacks Security opinion Employee discontent: Insider threat No. 1 CISOs who focus only on detection technology — and don’t engage with the human side of the security equation — are missing a key ingredient for insider risk management. By Christopher Burgess May 21, 2024 7 mins CSO and CISO Threat and Vulnerability Management Human Resources PODCASTS VIDEOS RESOURCES EVENTS SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe