Cisco Systems, Inc. unveiled the Cisco AI Assistant for Security. This marks a major step in making artificial intelligence (AI) pervasive in the Security Cloud, Cisco's unified, AI-driven, cross-domain security platform. The AI Assistant will help customers make informed decisions, augment their tool capabilities and automate complex tasks.

With unmatched visibility across the network and security, Cisco works with more machine-driven telemetry and on a scale larger than most in the industry. The new Cisco AI Assistant for Security is trained on one of the largest security-focused data sets in the world, which analyzes more than 550 billion security events each day across web, email, endpoints, networks and applications. It can understand event triage, impact and scope, root cause analysis and policy design.

With this data, the AI Assistant aims to close the gap between cybersecurity intent and outcomes. All of Cisco's AI capabilities are built securely and align with Cisco's Responsible AI Framework. Continuing the rapid pace of innovation, Cisco is introducing: AI Assistant for Firewall Policy: The Cisco AI Assistant for Security is first going live within the Cisco Cloud-delivered Firewall Management Center and Cisco Defense Orchestrator to solve the big challenge of setting and maintaining complex policies and firewall rules. Administrators can now use natural language to discover policies and get rule recommendations, eliminating duplicate rules, misconfigured policies and complex workflows with increased visibility as well as accelerated troubleshooting and configuration tasks.

AI-powered Encrypted Visibility Engine for All Firewall Models: Most data center traffic is encrypted and the inability to inspect encrypted traffic is a key security concern. Decrypting traffic for inspection is resource-intensive and fraught with operational, privacy and compliance issues. With the 7.4.1 Operating System now available across the entire Cisco Secure Firewall family, customers see AI go even further via the Encrypted Visibility Engine.

The Encrypted Visibility Engine leverages billions of samples, including sandboxed malware samples, to determine if the encrypted traffic is transporting malware. It can tell which operating system the traffic is coming from and what client application is generating that - all without the need for decryption.