In its push to help IT and security operations professionals better respond to cyber incidents, Rubrik, Inc. announced Ruby, the generative AI companion for Rubrik Security Cloud designed to speed cyber detection, cyber recovery, and cyber resilience.
The company will leverage Microsoft’s Azure OpenAI, in combination with its ML-driven Data Threat Engine, to help discover, investigate, remediate, and report on cyber incidents.
The company’s newest AI companion, Ruby, extends Rubrik Security Cloud with generative AI and automation. It helps customers of all levels of cyber expertise through a guided response process that enables customers to explore, understand, and respond to a cyber incident, with the goal to resume critical business operations more rapidly.
“One of the most important values of Ruby is that we leverage Rubrik’s best practices and the experiences from our own field and ransomware recovery teams, who have worked with hundreds of customers across industries,” said Anneka Gupta, CPO. “Think of Ruby as the personification of a security analyst in AI, who is there to hold the customer’s hand to resolve a security incident much faster than they could do before.”
Click to enlarge
Rubrik deploys AI to serve customers in 3 ways:
Detect anomalous activity in data across enterprise, cloud, and SaaS applications, to empower customers to identify malicious activity and determine the scope of a cyberattack or incident via Rubrik’s Data Threat Engine;
Drive customer satisfaction with a highly-engaged support team, which can be more proactive and targeted in alerting to potential problems before they broadly impact organizations’ systems via the firm’s internally developed Sentry AI platform;
Provide security expertise with a guided, rapid response process that helps them navigate challenging workflows and speeds safe recovery from cyber incidents via Ruby.
Click to enlarge
In response to data risk alerts generated in Rubrik Security Cloud, users can interact with Ruby, the company’s AI-assistant, to ask follow-up questions including whether any sensitive data was impacted, or what needs to be done to restore the environment. Ruby will provide guidance on additional questions to pose, and help customers successfully resolve incidents more quickly.
In this era of cloud and AI, data is exploding. And according to the most recent Rubrik Zero Labs State of Data Security report, IT and security leaders dealt with 52 cyberattacks on average in 2022. To make matters worse, the mean time to response for cyber incidents in production environments is over an hour for over 60% of organizations, giving the attackers ample time to encrypt or exfiltrate data. To restore an environment following a cyber incident, extensive forensics is required to determine the root cause, a process that typically requires sorting through countless manuals or enlisting an external service who can guide through next steps.
“Securing business’ data must be a company-wide imperative; every employee should be empowered with the tools to quickly respond to incidents. Our goal with Ruby is to bridge any skills gaps and eliminate the roadblocks to cyber response so that all organizations realize business continuity and preserve the integrity of their corporate data,” said Gupta.
Ruby is planned to be available in the coming months to Enterprise Edition subscribers who opt in. Over time, it will expand to help customers recover faster and more effectively from cyber attacks.