Küberturbe operatsioonid

Ründav turve

Turvanõustamise teenused

CYBERCAST # 58: AI in Cybersecurity: Hype vs. Reality with Marvin Ngoma (Elastic)

NEVERHACK Estonia 8. mai 2025

Cutting Through the AI Hype in Cybersecurity: What’s Real and What’s Not?

AI is everywhere in cybersecurity, but how much of it actually works? Every vendor claims their AI-powered solution can detect, prevent, and stop cyber threats before they happen. But is this just marketing, or can AI truly enhance security operations?

In this episode of Cybercast, host Ronnie Jaanhold is joined by Marvin Ngoma from Elastic, an expert in security intelligence and AI-driven cybersecurity. Together, they break down the myths, realities, and practical applications of AI in security teams today.

Hype vs. Reality: Where AI Fails and Where It Wins

AI is often marketed as a magic fix for security teams, but Marvin debunks this myth. AI is not here to replace human analysts—but security teams who know how to leverage AI will outperform those who don’t. The conversation explores:

  • Common AI myths—Is AI really replacing cybersecurity jobs?
  • Where vendors overpromise—Why most “AI” solutions are just machine learning in disguise
  • What AI is actually good at—Reducing alert fatigue, improving incident response, and enhancing threat detection

How Security Teams Can Operationalize AI

Many organizations struggle with adopting AI effectively. Marvin explains how AI can be a game-changer for security workflows, but only if implemented correctly. Key discussion points include:

  • The role of AI in automating threat detection and response
  • How security teams should evaluate AI solutions—Key questions to ask vendors
  • Why AI adoption depends on an organization’s security maturity

Real-World AI Success Stories

Elastic has been at the forefront of practical AI implementation, and Marvin shares a fascinating case study:

  • 34% reduction in investigation time—A real-world example of how AI-powered automation helped a security team cut response times significantly
  • Elastic’s AI-powered Attack Discovery—A breakthrough in security automation that helps analysts identify cyberattacks in under a minute

This episode is a must-listen for security professionals, IT leaders, and business executives who want to understand how AI is shaping cybersecurity—beyond the marketing buzz.

  • AI is not replacing security teams—but it’s making them faster and more effective
  • Not all “AI” solutions are equal—ask vendors the right questions before buying
  • Security teams must operationalize AI to get real value

Jaga

Märksõnad

Märksõnad

Jaga

Viimased postitused

21. mai 2026

Ronnie Jaanhold: tehisaru ja pärisaru koostöös kasvab turvalisus

Tehnoloogia areneb kiiremini, kui regulatsioonid ja inimeste teadmised järele jõuavad. Pettused muutuvad usutavamaks, tööriistad võimsamaks ja nende kasutamisega kaasnev mugavus kasvab samuti kiiresti, kirjutab Ronnie Jaanhold. Arst kuulab patsienti, keskendub ja küsib täpsustavaid küsimusi. Ta ei kirjuta midagi üles, sest vestlus salvestatakse ning tehisintellekt koostab sellest ise haigusloo. Arstil jääb nüüd rohkem aega patsiendi jaoks, […]

Loe edasi
18. mai 2026

NEVERHACK Eesti juht Jürgen Erm: elame andmelekete kuldajastul

NEVERHACK Eesti juht Jürgen Erm rääkis Algorütmi podcastis ettevõtte algusaastatest, müügitehingu telgitagustest prantslastele ning mida kujutab endast tänapäevane turvaseire teenus. Ermi sõnul võib NEVERHACKi turvaseiret lihtsustatult võrrelda digitaalse turvamehega, kelle ülesanne on märgata ohtlikku tegevust enne, kui sellest kasvab suurem intsident.. Pikemalt räägiti ka sellest, mida NEVERHACKi turvaseire teenus tegelikult tähendab. Erm kirjeldab seda lihtsustatult […]

Loe edasi
11. mai 2026

Aleksei Zjabkin: „Kui midagi ei juhtu, siis oled oma tööd hästi teinud“

Küberturvalisuse maailmas räägitakse sageli rünnakutest, kriisidest ja miljarditesse ulatuvatest kahjudest. Vähem on aga juttu  inimestest, kes töötavad selle nimel, et midagi ei juhtukski. Aleksei Zjabkin on üks neist inimestest. Täna juhib ta Neverhacki SOC-i (Security Operations Center) ehk turvaseire keskust, mis töötab ööpäevaringselt, jälgides, analüüsides ja reageerides klientide turvaohtudele. Aleksei teekond küberturvalisusse ei alanud aga [...]

Loe edasi