On this episode of the Six Five On The Road, host Shira Rubinoff is joined by Tanium‘s Harman Kaur, VP, President of AI for a conversation on the evolving landscape of autonomous endpoint management and security.
Their discussion covers:
- The definition and importance of Autonomous Endpoint Management
- Challenges businesses face in endpoint security
- How AI is revolutionizing the way we manage and secure endpoints
- Strategies for implementing effective endpoint management solutions
- Future trends in endpoint security and management
Learn more at Tanium.
Watch the video below, and be sure to subscribe to our YouTube channel, so you never miss an episode.
Or listen to the audio here:
Disclaimer: The Six Five Webcast is for information and entertainment purposes only. Over the course of this webcast, we may talk about companies that are publicly traded and we may even reference that fact and their equity share price, but please do not take anything that we say as a recommendation about what you should do with your investment dollars. We are not investment advisors and we ask that you do not treat us as such.
TRANSCRIPT
Shira Rubinoff: Hi, this is Shira Rubinoff. I’m president of Cybersphere, a Futurum Group company. We’re on the road with Six Five Media here at Broadcast Alley at RSA 2024 coming at you live. I’m here with Harman Kaur, vice president of AI at Tanium. Harman, what a pleasure to be with you here today.
Harman Kaur: Thank you so much for having me.
Shira Rubinoff: So Harman, could you please introduce yourself to our audience, tell them a little bit about who you are, your backgrounds, and what you do for Tanium?
Harman Kaur: Absolutely. So my name is Harman Kaur. I lead all things AI and automation for Tanium, which is the endpoint management company based here in Seattle, Washington. My background is actually in the military, so I’ve spent about a decade in the military in various different roles and seven years in Tanium in field engineering, strategy roles, product roles, and now leading all things AI and automation.
Shira Rubinoff: Well, that’s quite a background, and thank you for your service to our country.
Harman Kaur: Thank you so much. Thank you for your support.
Shira Rubinoff: Thank you. So Harman, can you describe AEM and how it leverages AI to address the macro forces that continue to challenge IT and security operations?
Harman Kaur: Yeah. I think a common thing we get asked today is, “I can’t hire the right skills at the right pace to address all the things that I want to address. So how do I automate processes?” And I think we’ve been hearing about automation for a long time. And with autonomous endpoint management, with AEM, what we’re focused on is giving you intelligence to be deliberate about which things that you should automate. And what that means is we have access to so much data. We want to take that data and tell you, “Here’s automations that have the highest probability of having positive change in your environment and actually remediating vulnerabilities in real time.”
Shira Rubinoff: I think that’s so important. I think a lot of organizations are saying, “Automate it.”
Harman Kaur: Yes.
Shira Rubinoff: Just automate it.
Harman Kaur: Yeah.
Shira Rubinoff: I don’t have time for that. I don’t want to hire people.
Harman Kaur: Yeah.
Shira Rubinoff: Automate it. And having that insight into understanding what you can automate it, what you shouldn’t automate it is integral for organization, both on the operational side but also on security. So that’s quite important.
Harman Kaur: Yeah, absolutely.
Shira Rubinoff: And Tanium AEM scales IT operations and security execution with data-driven insights and autonomous action to dramatically improve operational efficiency, continuously [inaudible 00:02:21] risk and reduce costs. So please talk to that point for a moment. We’d love to hear just your thoughts around that because I think that’s an important topic also that I know the organizations do struggle with.
Harman Kaur: Yeah, absolutely. So organizations often talk about automating processes. One of the hesitation is that’s going to impact my entire enterprise all at once.
Shira Rubinoff: Yes.
Harman Kaur: And I don’t want that to happen, obviously. I want that change to go out in a responsible way. So part of our autonomous employee management strategy is rolling out changes through a ring progression. So what that means is we can dynamically first send a change out to a small percentage of your endpoints and monitor that change. And if it’s successful, then we progress to the next phase and the next and the next before that change goes out to your entire enterprise. But Tanium also has the intelligence to stop anytime we realize, hey, this change is having a negative impact, it’s impacting users in a negative way. Those change changes will stop from impacting your enterprise.
Shira Rubinoff: Well, that’s certainly another area that organizations struggle with. And there’s always that question, should we do this change? Should we not do this change? If we do it, what are the consequences of it? And I think there’s a lot of time delay, which actually could yield to an attack, but also could delay the movement of an organization and understanding that, even if you’re going down that road and it’s not right for you, you could pause.
Harman Kaur: Yes.
Shira Rubinoff: I think that adds massive value to organizations, so that’s great to hear.
Harman Kaur: Yeah, absolutely. And you can define what those progressions are. You can say, “I care if 90% of my endpoints have succeeded.” Maybe there’s a change. You care 95% have succeeded-
Shira Rubinoff: Sure.
Harman Kaur: … before you go out into the next phase.
Shira Rubinoff: Oh, that’s great.
Harman Kaur: Yes.
Shira Rubinoff: And also, Tanium Automate is providing the AI that helps organization improve their operational health and cyber hygiene. So I talk a tremendous amount about cyber hygiene.
Harman Kaur: Yeah.
Shira Rubinoff: I kind of wrote a book about that, the human factors of it, the pieces and the parts that organizations need to look at, the people, the process, and the technology. Have the best technology out there.
Harman Kaur: Yeah.
Shira Rubinoff: Have the greatest people there. But the glue in the middle is the process. And that would yield and talk about, and we could talk about cyber hygiene at length. We’ll get to that another time, but-
Harman Kaur: Yeah.
Shira Rubinoff: … can you talk to these points for a moment as well?
Harman Kaur: Yeah, absolutely. I always think security is done a little backwards where we have all these tools that we invest in-
Shira Rubinoff: Yeah.
Harman Kaur: … to I’m going to block an attack.
Shira Rubinoff: Yes.
Harman Kaur: Or here’s all these fancy tools, so if attack occurs, I can use this to collect this piece of data.
Shira Rubinoff: Yep.
Harman Kaur: But people forget the proactive side, which is the hygiene side-
Shira Rubinoff: Yes.
Harman Kaur: … which you’re referring to.
Shira Rubinoff: Yes.
Harman Kaur: So how do you simplify that hygiene side? Because it is very laborious and it can be very, very hard and complex. So that’s what Tanium Automate solves for. It’s to simplify those workflows, help you automate as many of those workflows as possible. So if you have a workflow that’s very complex and it takes three people to do, you can build a simple playbook to say, “Here is my 18 steps that need to occur for this workflow.” And Tanium Automate will do that for you, stop and check in at any point that you want to check in before it completes the rest of the work.
Shira Rubinoff: So let’s break that down just to the minutia level.
Harman Kaur: Yeah.
Shira Rubinoff: And just give an example about something that somebody might take for granted with an organization of what-
Harman Kaur: Yeah.
Shira Rubinoff: … they could break down, what they could automate, just something that everybody-
Harman Kaur: Yeah.
Shira Rubinoff: … really resonate with our audience here.
Harman Kaur: Yeah. So a really common one is licensed software, expensive software that’s out there that’s licensed, no one’s using it, right?
Shira Rubinoff: Yeah.
Harman Kaur: That takes someone to go and figure out where it exists, who’s been using it? When was the last time it was used? Should I uninstall it? Should I not uninstall it? You can just create a playbook to say, “Hey, Tanium, monitor for this license to see if it’s been used in the last 90 days. If it hasn’t, just double check it’s not been used right now and go ahead and uninstall that and send a user notification to say, ‘Hey, we’ve removed this license. If you need it, you can go ahead and install it again.'” But you’re saving a lot of cost there-
Shira Rubinoff: Sure.
Harman Kaur: … right? As well as keeping that piece of software updated all the time.
Shira Rubinoff: That’s super important. And it’s almost automation at its simplest form, yet it’s so valuable to organizations when you think about it.
Harman Kaur: Yeah.
Shira Rubinoff: Not just cost savings, but efficiency within the organization. You’re not having to piggyback and think about what HR has to deal with.
Harman Kaur: Yeah.
Shira Rubinoff: Think about operations, think about security.
Harman Kaur: Yeah.
Shira Rubinoff: It goes across the entire organization. That’s quite important. And we talk about Tanium’s real-time data access and actionability enables AI to provide automation to identify immediate issues happening in your customer’s threat landscape.
Harman Kaur: Yeah.
Shira Rubinoff: So when we talk about that, that’s certainly something that every organization thinks about, and even more so, worries about.
Harman Kaur: Yes, yes.
Shira Rubinoff: How would you describe what you do there and what you do to help your customers?
Harman Kaur: Yeah, absolutely. So we have a Tanium Guardian. What Tanium Guardian does is any zero-day vulnerability that occurs, what we do is we send you a notification to say, “Here’s a zero-day vulnerability that’s currently out in the wild, and here’s your exposure to it.” Since we have that real-time data, we can actually go ahead and query your endpoints proactively for you and tell you what your exposure is. And then we can also give you a remediation path if one is available. So here’s the remediation path on how we think you should address this. And that is all automated into what we refer to as a simple smart action that you can go ahead and quickly deploy. And again, it’ll deploy in that responsible ring-based approach where we’ll start testing it and propagating it throughout your environment. But you have that all in one place now, so going from a notification all the way to action.
Shira Rubinoff: And again, in the security industry, we talk about there’s no one-size-fits-all.
Harman Kaur: No.
Shira Rubinoff: And certainly this is no one-size-fits-all.
Harman Kaur: No.
Shira Rubinoff: What would you say to a customer who is saying, “You know what? We’re very different than everyone else out there. We really don’t need all the capabilities, but here are some specific ones we need.” What would you do or what would you say to that customer themselves?
Harman Kaur: Yeah. No, that’s a really good point. And that point is even more important with the adoption of AI, right? Every organization’s at a different place in adopting AI, which is why with autonomous endpoint management we’re very careful in making sure we still keep a level of human control in there so that you can interact and stop or engage or edit or change anything that we recommend to you at any point to make sure it fits your organization’s need. And Tanium is also getting smarter and providing more context-based recommendations of what’s applicable to you and your environment.
Shira Rubinoff: At every given moment or is that something they set up specifically for their needs?
Harman Kaur: So over time, we’re sort of learning and kind of adopting our approach to say, “Here’s recommendations that are particular to your environment and what we’re assessing in your environment.”
Shira Rubinoff: Yeah, very interesting. It sounds like something that’s quite needed.
Harman Kaur: Yeah.
Shira Rubinoff: We talk about Tanium cyber hygiene, as we touched upon a moment before.
Harman Kaur: Yeah.
Shira Rubinoff: Recommendations and automation are coupled with AI-powered confidence scores, a type of risk and impact assessments the organizations can assess the benefits, the risks, and impact before making a choice for the environment. So certainly just what we spoke about.
Harman Kaur: Yeah.
Shira Rubinoff: But on a larger notice or more can you expand on that?
Harman Kaur: Yeah.
Shira Rubinoff: When they want to get to the nitty-gritty. And certainly, when they’re making these choices and these decisions, they really need to make a calculated decision that’s best for the organization at that moment in time.
Harman Kaur: Yeah, absolutely. So what confidence score gives you is we’re monitoring every single change that’s happening on an endpoint to seeing what type of performance impact it had. Was it successful? Was it failing? Or even what are users or operators saying about this change? Did they have a positive experience? And we’re calculating that into a confidence score that customers can then leverage to drive automation to say, “Here is a change that has a really high confidence score because it doesn’t cause any performance impact. We want to automate this process so it can actually happen on its own because we have high confidence now.” And that data of our confidence score is data we’ve aggregated across hundreds of customers, millions of endpoints that are also making that change.
Shira Rubinoff: Well, that’s super important. And again, making the right decision with confidence is the only way to do that.
Harman Kaur: Yes, absolutely.
Shira Rubinoff: Harman, thank you. And I always ask my interviewees for a cybersecurity tidbit or helpful hint or a business tip, whether it’s personal or an organization that they could give to the audience from their own personal use cases or their own personal experiments or whatever it is that they’ve encountered along their business journey or life journey that they’d like to share with the audience. So I know our audience would love to hear your business tip or cybersecurity helpful hint.
Harman Kaur: Yeah. I think for me it’s I always talk about that cybersecurity is everyone’s problem-
Shira Rubinoff: Yes.
Harman Kaur: … in an organization. I think we sometimes often, and I say this is IT’s issue, IT needs to worry about that. I think every, regardless if your role is you’re in HR, you’re a recruiter, whatever it is, I think everyone should be informed of cybersecurity to some extent in your organization so they can be a great ally, they can help you with the cyber hygiene. When an update does go up, they’re more proactive to say, “I should apply that update because there’s consequences if I don’t.”
Shira Rubinoff: Listen, that’s very well said. That’s not just cyber hygiene, it’s cyber culture.
Harman Kaur: Yeah.
Shira Rubinoff: And I think our audience would agree with you on that. Harman, thank you very much for your time, and I know our audience really enjoyed hearing from you. And we are here with Six Five Media, on the road with Six Five Media live from Broadcast Alley at RSA 2024. Thank you for joining us and we’ll be back soon.
Author Information
Acclaimed cybersecurity researcher and advisor, Shira is a global keynote speaker and presenter, and expert media commentator. She joined The Futurum Group in February 2024 as President, Cybersphere.