_
Combining innovation, cybersecurity, AI, and product launch

May 13, 2024
Cybersecurity - Security network

Cybersecurity is undeniably a strategic issue for all businesses and public institutions. In this context, cybersecurity technology designers must continuously innovate to offer effective and scalable tools that allow their clients to operate within a sphere of trust. Custocy, a Toulouse-based editor specialising in AI applied to cybersecurity, shares insights on the actions that a startup in the sector must undertake during the commercial launch of its offering.

Proving the value of one’s product from its launch

Not all companies are necessarily attacked as soon as a cyber solution is implemented. However, relying on solutions like Custocy allows access to weak signals that could be the precursors of an attack or points of vulnerability (abnormal behaviours on the client’s network, asset inventories highlighting undeclared machines, unencrypted passwords, decommissioned machines attempting to reconnect to the network, excessive use of the ICMP (Internet Control Message Protocol), etc.).

The concept of discovering and mapping one’s network is therefore an initial benefit that enables corrective or investigative measures to address potential flaws or risks.

All these insights are made possible thanks to the AI used by Custocy, which, by working collaboratively, continuously scan the client’s network (learning the network’s biorythm) to identify abnormal actions or behaviours while limiting false positives. It is important to note that a learning phase of a few weeks is necessary for these AI to become fully operational and effective. It should be noted that the AI deployed from the start of a project have undergone lab training where they have assimilated extensive knowledge about serious behaviours indicative of attacks or concerning situations on the network.

Continuously adapting one’s offering

One of the major challenges for cybersecurity technology designers is to keep pace with the evolution of threats and to adapt their offerings to incorporate, and in some cases anticipate, these changes. In this regard, seeking new AI to complement those in use is essential. By continuously expanding their range of AI, it becomes possible to obtain reliable indicators to assess abnormal behaviours on the network and prevent future attacks.

A favourable regulatory environment

New regulations such as DORA and NIS2 are increasing cybersecurity requirements for European businesses. In this context, launching a Network Detection and Response (NDR) solution is a pertinent move. Indeed, these regulations aim to enhance digital operational resilience and network security, creating a heightened demand for advanced technologies capable of quickly detecting and responding to threats. This is particularly important in combating shadow IT, a major focus, especially for all financial institutions.

By William Ritchie, CTO and PhD in AI at Custocy