IBM Doubles Down on AI-Powered Storage Security

IBM Doubles Down on AI-Powered Storage Security

The News: IBM announces new AI-enhanced versions of its FlashCore Module (FCM) technology available inside new IBM Storage FlashSystem products, and a new version of IBM Storage Defender software, to help organizations better detect and respond to cyberattacks. Additional information is available in IBM’s blog.

IBM Doubles Down on AI-Powered Storage Security

Analyst Take: IBM’s FlashCore Modules are a family of high-performance flash drives that are used in IBM Storage FlashSystem offerings. To-date, the technology has been able to scan incoming data for anomalies that could indicate nefarious activity to the block level of granularity. The new, fourth generation FCM (FCM4) are even more granular, with the ability to monitor every I/O. According to IBM, this can allow anomalies to be detected in less than a minute – in turn allowing the organization to respond to and recover from an attack more quickly. A host of factors including compression and entropy are measured via machine learning and are then sent to IBM Storage Insights to alert administrators.

Perhaps even more notably in my opinion, the anomaly detection occurs in-line without an impact to write performance. This is because the FCM offloads these functions from the storage controller. This frees the processor in the controller to focus on core storage management services.

When an attack is detected, recovery can occur from immutable data copies that reside on the IBM Storage FlashSystem itself due to the IBM Safeguarded Copies feature in IBM Spectrum Virtualize software.

In conjunction with the FCM4 updates, IBM has also enhanced Storage Defender, its cyber resiliency solution that pulls from a number of its offerings including IBM Storage Protect, IBM Storage Protect for Cloud, IBM Storage Virtualize, and IBM Storage Sentinel. The solution integrates with IBM FlashSystem for more comprehensive capabilities spanning not only early detection but also streamlined recovery, as well as primary and protection environments.

To Storage Defender, IBM has enhanced AI-based threat detection capabilities for the protection data copies that are used for cyber-recovery. It also added workload and storage inventory management capabilities, to enhance organizations’ visibility into their data and applications. This is particularly important to mitigating blind spots that attackers may compromise, and when it comes to establishing the business continuity plan and what is critical to recover immediately following a cyber-attack. IBM presents this as a concept of “minimum viable recovery,” and I note that this is critical for IT operations teams when it comes to prioritizing efforts and mitigating downtime of critical business services, following an attack. Last but certainly not least, IBM has added the ability to orchestrate and automate the recovery of VMware applications, to reduce recovery times and better guarantee recovery.

I view IBM’s announcement as a response to the fact that attack vectors are continuing to evolve, especially as attackers find new fuel and innovation in the form of generative AI. Against this backdrop, early detection is critical – but so is the ability to then take swift action in the form of response and recovery. The ability to be more proactive is a growing requirement that we are seeing, and that IBM is addressing by bringing capabilities ranging from production storage to protection software and augmenting them with new capabilities including AI. It is notable that, in addition to addressing both production and protection environments, IBM’s approach also addresses complex hybrid multi-cloud environments that have become the norm for most enterprises.

As a final concluding point, I note the promise that AI offers for enhancing cyber-resiliency, but we also note that its effectiveness relies heavily on the quality of data that is used to train the models. As noted, IBM is tying visibility and detection robustly across the storage environment. This viewpoint, alongside responsible access to subsequent insights, are important for customers to consider as they evaluate such solutions.

Disclosure: The Futurum Group is a research and advisory firm that engages or has engaged in research, analysis, and advisory services with many technology companies, including those mentioned in this article. The author does not hold any equity positions with any company mentioned in this article.

Analysis and opinions expressed herein are specific to the analyst individually and data and other information that might have been provided for validation, not those of The Futurum Group as a whole.

Other Insights from The Futurum Group:

IBM Augments its Cyber Resiliency Stack with IBM Storage Defender, in Collaboration with Cohesity

IBM Announces New Quantum Processor and IBM Quantum System Two

IBM Security’s Program for Service Providers & Innovative Solutions – The Six Five on the Road at AWS re:Invent 2023

Author Information

Krista Case

Krista Case brings over 15 years of experience providing research and advisory services and creating thought leadership content. Her vantage point spans technology and vendor portfolio developments; customer buying behavior trends; and vendor ecosystems, go-to-market positioning, and business models. Her work has appeared in major publications including eWeek, TechTarget and The Register.

Related Insights
SaaS ERP Is Reshaping Data Access, But Can It Deliver on the Promise of Real-Time Insight?
July 11, 2026

SaaS ERP Is Reshaping Data Access, But Can It Deliver on the Promise of Real-Time Insight?

IT Convergence's SaaS ERP strategy capitalizes on enterprise modernization trends, with 84.5% of channel partners expecting AI-driven growth and the Channel Ecosystems market forecast to reach $41.8B by 2029....
Can Anthropic's GRAM 'Off Switch' Make Dual-Use AI Safer Without Killing Utility?
July 10, 2026

Can Anthropic’s GRAM ‘Off Switch’ Make Dual-Use AI Safer Without Killing Utility?

Anthropic and AE Studio introduced GRAM, enabling selective removal of sensitive AI capabilities without retraining, potentially addressing privacy and security concerns for organizations adopting generative AI....
Is Migrating from Synapse to Databricks the Shortcut to Unified AI-Ready Data?
July 10, 2026

Is Migrating from Synapse to Databricks the Shortcut to Unified AI-Ready Data?

Organizations are consolidating data infrastructure around unified platforms, with 73.6% planning to increase spending—signaling a shift toward AI-ready, simplified architectures that eliminate costly silos....
Exprivia Bets Big on Banking Security: Can Partnership Drive Real Innovation?
July 10, 2026

Exprivia Bets Big on Banking Security: Can Partnership Drive Real Innovation?

Exprivia announced partnership with ABI's WeSec summit as Main Partner, aligning with surging demand for cybersecurity and AI solutions across Italian banking. The move positions the company to capitalize on...
Can Biohub’s Open AI Models and Imaging Tools Redefine Biomedical Discovery?
July 10, 2026

Can Biohub’s Open AI Models and Imaging Tools Redefine Biomedical Discovery?

Biohub's AI integration in protein modeling and genomics marks a biomedical shift, yet adoption barriers—hallucination risk, data privacy, and unclear ROI—hinder clinical deployment....
AWS Looks to Collapse the Search-Analytics Divide: How Its New OpenSearch Engine Fuels Agentic AI
July 9, 2026

AWS Looks to Collapse the Search-Analytics Divide: How Its New OpenSearch Engine Fuels Agentic AI

Brad Shimmin, VP at Futurum, explores how AWS is re-architecting Amazon OpenSearch Service. By fusing search and analytics and integrating native MCP support, AWS aims to slash log storage costs...

Book a Demo

Welcome

The vision behind everything in Futurum’s Custom Research practice is this: research should show you what is happening, what comes next, and what to do about it. It should be personal to each audience, easy for people to grasp, and structured so LLMs can reason over it accurately. And it should be fast and turnkey; you want answers now, not another project to carry for quarters.

Whether you are defining business, channel, or go-to-market strategy; evaluating vendors or justifying ROI; or commissioning research to fill an emerging market need, we have your back, with a program that answers your questions with the objectivity and credibility to drive real decisions.

To do it, we bring unmatched data to bear: Futurum research, surveys, and market projections; validated market feeds; ETR’s 15 years of insight from 10,000 technology decision-makers; G2’s buyer and user data; and what our analysts hear every day. Add leading primary collection, from AI-moderated voice interviews to surveys and analyst-led interviews, all turnkey, and every project comes out credible, nuanced, and actionable.

And we don’t just drop the results in your lap. For internal work, we provide analyst-led sessions, interactive dashboards, and a range of formats. For market-facing work, Futurum delivers turnkey activation and amplification that actually gets seen, by people and by LLMs, through our media and share of voice. This is research that moves decisions and markets.

We will meet you wherever you are, from a fast-turn brief to a multi-year program, and shape the work to your goals, timeline, and budget. The right program for your moment.

If any of this is useful, I would love to talk.

Benjamin Brown, VP Custom Research, Futurum Research

Benjamin Brown

VP, Custom Research · The Futurum Group

Newsletter Sign-up Form

Get important insights straight to your inbox, receive first looks at eBooks, exclusive event invitations, custom content, and more. We promise not to spam you or sell your name to anyone. You can always unsubscribe at any time.

All fields are required






Thank you, we received your request, a member of our team will be in contact with you.