In a significant move within the enterprise IT sector, two heavyweights are enhancing their partnership to merge AI security with enterprise Security Operations (SecOps) tools. Cisco, known for its pioneering initiatives, launched Cisco AI Defense in January, a specialized tool designed for securing enterprise AI workloads. This innovative platform is set to integrate with several components of ServiceNow’s SecOps portfolio, showcasing a strategic alliance that aims to bolster the security framework of businesses leveraging AI technologies.
Cisco AI Defense will identify AI assets, including workloads, data, and models, and will correlate these with applications housed in ServiceNow’s Now platform.
The platform will relay vulnerability assessment findings to ServiceNow’s Vulnerability Response system.
Cisco AI Defense is also programmed to send critical AI application telemetry to ServiceNow’s Security Incident Response unit.
Furthermore, customers can align Cisco AI Defense controls with ServiceNow’s Integrated Risk Management standards, enhancing IT compliance protocols.
ServiceNow’s Security Posture Control will be capable of identifying AI workloads that fall outside the runtime protection provided by Cisco AI Defense.
This collaborative initiative underscores a prevailing trend in cybersecurity, particularly highlighting its escalation to “board-level stuff” for enterprises. As organizations face escalating cybersecurity threats, there is a growing inclination to consolidate their tech partnerships, favoring fewer but more robust technology vendors that provide comprehensive solutions, especially for AI security. This insight was expressed by Fernando Montenegro, an analyst with The Futurum Group.
A CEO is not asking, ‘Do I choose security vendor one or security vendor two?’ They are asking, ‘Who is my technology partner?’ Fernando Montenegro Analyst, The Futurum Group
Montenegro further elaborated that the current landscape has shifted, with buyers increasingly seeking to mitigate risks associated with their cybersecurity investments. They tend to lean towards larger vendors with diversified offerings, such as Microsoft, Google, Palo Alto, and Cisco, enabling them to simplify their technology stack. In this context, a CEO’s consideration has shifted from choosing between various security vendors to identifying the right technology partner.
Cisco and ServiceNow boast a portfolio that extends beyond cybersecurity tools. This integration is indicative of their efforts to bridge gaps in areas where they may not hold a dominant market position. For instance, while Cisco commands a substantial share of the network infrastructure market—estimates suggest over 75%—it faces stiff competition in the incident response arena from sizeable competitors like IBM and Palo Alto Networks. Conversely, ServiceNow has established a commanding presence in the IT service management sector. However, it has not yet achieved a similar stature in security tools, with systems such as those from Microsoft, Gen Digital, and CrowdStrike ranked as leading vendors by Gartner for 2024.
In a bid to strengthen its AI capacities, ServiceNow acquired Moveworks in March to enhance its agentic AI expertise. Meanwhile, Cisco has emerged as a more prominent player in AI security discussions, as noted by independent analyst Andy Thurai from The Field CTO. The partnership with Cisco positions ServiceNow to better compete in the rapidly evolving landscape of security for AI agents.
Thurai remarked that ServiceNow is ambitious in its endeavor to rapidly evolve into a significant player in the agentic AI domain, while Cisco’s existing security toolsets related to AI are far more advanced at this stage.
As the race for enterprise AI dominance intensifies, security and governance are becoming increasingly crucial. Montenegro voiced that research indicates governance and trust rank among the primary concerns enterprises possess regarding AI. These two elements distinctly differentiate vendor platforms from private solutions, reinforcing the need for enterprise AI providers to deepen their focus on security frameworks.
However, there exists a note of caution within the security industry regarding the scalability of AI agent workload automation as Cisco and its partners develop a new open-source cybersecurity large language model (LLM). Some experts express skepticism about whether it can effectively meet the demands of the vast volume of security alerts that modern enterprise security operations centers receive. Adrian Sanabria, an independent security consultant, raised concerns that the computational power necessary for generative AI solutions may approach that of supercomputers, potentially exceeding not only security budgets but also the overall costs allocated to Security Operations Centers (SOCs).
Sanabria emphasized that unless there are innovations that enable significant efficiencies within LLMs, enterprises would continue facing substantial challenges. He pointed out the plethora of companies also competing in this domain, including 7AI, Dropzone, Bricklayer, and others, all vying for a competitive edge in AI-driven security solutions.
Overall, the strengthening relationship between Cisco and ServiceNow marks a pivotal moment in the enterprise technology landscape, particularly as businesses increasingly navigate the complexities of AI security and governance.
Beth Pariseau, a senior news writer for Informa TechTarget, is an award-winning veteran of IT journalism covering DevOps. Have a tip? Email her or reach out @PariseauTT.
