Get a demo

News

Vulcan Cyber 2.0: integrating AI into exposure management

The Vulcan Cyber ExposureOS latest AI-driven updates focus on streamlining workflows, accelerating decision-making, and adapting to the unique needs of security teams.

Hadar Landau | November 26, 2024

Intro

As cybersecurity challenges grow more complex, Vulcan Cyber is leveraging AI to meet the demands of the evolving threat landscape. In this blog, we’ll explore how our latest AI-powered advancements in the Vulcan Cyber ExposureOS are transforming the platform, streamlining workflows, and helping security teams take better control of their exposure risk. 

TL;DR

The Vulcan Cyber ExposureOS latest AI-driven updates focus on streamlining workflows, accelerating decision-making, and adapting to the unique needs of security teams. With the introduction of an advanced text-to-query engine and AI-driven CVE enrichment, we’re empowering security teams to make faster, more informed prioritization and remediation decisions. Supported by an upgraded data infrastructure, these features reinforce our commitment to continuously innovate and deliver modern security teams with the latest exposure management solutions and use cases. 

The vision: a smarter, more efficient, AI-driven exposure management

With Vulcan Cyber ExposureOS, our mission is clear: delivering a faster, smarter exposure management experience that embeds efficiency and intelligence into every step of the users’ journey. To achieve this, we built our roadmap around three core principles:   

  1. Efficiency: achieving more with less 

    We envisioned a platform where every interaction is smooth, intuitive, and designed to save time. Our goal was to simplify navigation, significantly reducing the number of steps for critical actions, such as identifying high-priority vulnerabilities or assigning tasks to IT. This means fewer actions, automated workflows, and intelligent shortcuts that help users access exactly what they need, exactly when they need it.   
     

  2. Actionability: a clear path to successful outcomes  

    We designed our platform to guide users toward clear actions, such as patching high-risk vulnerabilities within minutes, directly improving their security posture and reducing exposure risk. By highlighting to our users what actions need to be taken and giving them the flexibility to act right away, we help ensure vulnerabilities are remediated before they can be exploited. 
     

  3. Personalization: tailoring the experience to your needs  

    In a landscape where each company’s unique business structure and priorities have a critical impact on security operations, personalization is essential to ensuring every user gets the most out of the platform. Our approach for personalization is about understanding the unique goals, priorities, and context of each organization and tailoring the platform to fit those specific needs. Personalized recommendations and workflows help users focus on the most critical risks, saving them hours of manual prioritization every week. 


The solution: embedding AI into the heart of our
exposure management platform

To bring our vision to life, we integrated advanced technology and AI-driven capabilities into the platform. These enhancements streamline workflows, allowing customers to focus on strategic tasks rather than mundane processes. Let’s dive into each feature to see what it means for our users. 


Global
Search: a text-to-query search engine


In collaboration with the team at Neradot, we leveraged AI and ML to enhance user value and create more streamlined workflows within our platform.  

Our new Global Search enhances the Vulcan Cyber ExposureOS by making navigation and information retrieval seamless and intuitive. With a search bar accessible from every page, users can effortlessly input queries in natural language and access any piece of data, page or action, streamlining workflows and reducing time spent navigating.  


The search engine uses machine learning to understand user needs and recommend actions tailored to their environment. By analyzing search patterns, such as frequently queried vulnerabilities, it personalizes results, ensuring users can immediately access relevant actions like patching or reporting.

 

SmartCVE: GenAI CVE name enrichment 

 

Vulcan Cyber has adopted the Snowflake platform to address a common challenge in exposure management. Security scanners present detected CVEs by their associated numeric ID, which offers no insight into the underlying issue. As a result, security teams must manually examine each CVE to understand its real implications.   
 
To streamline this process and enhance efficiency in exposure management, we’re introducing our new ‘SmartCVE’ feature, powered by generative AI models. Leveraging the vast databases of Vulcan Cyber ExposureOS and comprehensive threat intelligence feeds, we utilize generative AI to produce new, human-readable IDs for discovered CVEs, reducing analysis time from hours to minutes by offering immediate clarity on their root cause. 

With this enhancement, users can quickly grasp the nature of the CVE and its potential impact. This is another significant step toward making Vulcan Cyber ExposureOS more action-driven, empowering users to make faster decisions and streamline remediation efforts. 

 


Under the hood: powering innovation with advanced infrastructure

In order to pave the way for ongoing innovation, we knew the right infrastructure was essential. We’ve redesigned our platform’s data pipeline to keep pace with growing demands and deliver a better experience for our customers. This isn’t just a tech upgrade – it’s a shift to a unified, AI-driven data environment built to handle complex challenges at scale while ensuring sensitive customer data remains private.


New infrastructure: seamless data processing with Snowflake and Snow Park
 

To ensure our processing engine was capable of handling data at scale in a fast, seamless and secure way, we consolidated our database into the Snowflake platform.  
 
This unified infrastructure enables us to store, process, and analyze data more efficiently, streamlining operations. Using Snow Park, we can now update multiple datasets simultaneously rather than one at a time, significantly boosting data processing speed and efficiency.


Global Search: secure query processing with Neradot and OpenAI 
 

At the core of our platform’s transformation is the integration of AI-powered capabilities, which provide a more intuitive and seamless user experience. When working on our Global Search, we partnered with Neradot to ensure smooth and seamless performance. 
 
Our global search engine uses OpenAI’s models to process customer queries in natural language, delivering real-time results. To protect customer data, we host OpenAI’s models in a secure, closed Azure cloud environment. When a user submits a query, the AI model converts it into JSON format for system compatibility. 

Notably, the model processes only the query itself, never accessing underlying customer data. This separation ensures that while AI delivers quick, precise responses, it never interacts with sensitive information—safeguarding customer privacy throughout the process. 



SmartCVE: vulnerability naming with Snowflake Cortex
 

Our SmartCVE feature utilizes Snowflake Cortex to enhance CVE identification through generative AI. 

Cortex uses parallel computation to distribute tasks across multiple processes, speeding up data handling. Instead of reprocessing the entire database, Cortex employs ‘delta processing’, focusing only on new or modified data. This method reduces system load, conserving time and computational resources while ensuring timely delivery of critical updates.


Lookin
g ahead: making AI innovation an ongoing mission

At Vulcan Cyber, our commitment to innovation drives us to continuously push the boundaries, ensuring our customers are the first to benefit from emerging technologies. AI will remain central to the evolution of our platform, enabling us to deliver smarter, faster solutions that address the unique challenges of the ever-changing threat landscape. 

Want to experience the Vulcan Cyber ExposureOS firsthand? Book a demo today to get in touch with one of our exposure management pros. 

Get rid of silos;

Start owning exposure risk

Test drive the leader in exposure risk management