Cybersecurity company Secureworks Inc. today announced the launch of a new artificial intelligence-powered service designed to help security analysts become more confident in prioritizing and responding to alerts that pose the greatest risks.

Called Threat Score, the new service reduces security analyst workloads by over 50% by assisting them in assessing the risk of an alert they investigate. Threat Score anticipates the likelihood of a negative impact within the context of their operations, giving them – and the business – the confidence that their teams are reducing organizational risk.

Threat Score offers a solution to a serious problem: alert noise. Secureworks argues that reducing alert noise and time to respond are the biggest areas where AI can have an impact on security outcomes. The workload savings achieved through Threat Score ensure that analysts are more quickly taking action on and remediating the threats that pose the biggest risk.

Offered as part of Secureworks Taegis XDR, Threat Score is claimed to be one of the first industry innovations to integrate AI into security analyst workflows to enhance accuracy and improve response times across the business.

Threat Score was run and tested by the Secureworks SOC for a year to create a continuous feedback loop, including labeling and data tracking, to train itto become even more accurate. That process is ongoing, and it’s being constantly trained using millions of security alerts across cloud, endpoint, network, email, identity and business applications.

Using the training data, the company says, Threat Score better prioritizes and understands threats than existing security information and event management and endpoint detection and response services due to the volume and variety of data. Threat Score assesses each alert and assigns a value that ranges from 0 to 10, with 10 indicating a greater likelihood that the activity poses a real threat to the organization.

The score, visible across the organization to SecOps analysts and the business, incorporates context about the organization’s security posture and environment. The assessment is based on several factors, including macroeconomic events, but assessed within the context of the organization’s environment, meaning that a similar cyberattack might score higher for one organization than another. Threat Score also provides visibility into how often the alert has been seen by Secureworks’ global customer base.

“Where AI adds true value is in leveraging large volumes of data and threat intelligence to dial down the noise, within the context of organizations’ operations, to provide accurate information about threat severity and likelihood,” said Kyle Falkenhagen, chief product officer at Secureworks. “Threat Score gives confidence that analysts are applying resources where they are most needed to manage cyber risk for the business and its stakeholders.”

Image Secureworks