Cybersecurity Professionals Anticipate Broad AI Integration in Security Operations, Yet Uncertain About Specific Applications


Adarma has released a groundbreaking report titled “A False Sense of Cybersecurity: How a False Sense of Security Can Harm Your Business.” This comprehensive study delves into essential aspects of security operations (SecOps), such as confidence levels, the proliferation of security tools, the integration of artificial intelligence, and the overall effectiveness and well-being of security teams.

Drawing from a survey conducted with 500 cybersecurity professionals working in UK organisations with over 2000 employees, Adarma has unveiled a wealth of insights concerning the industry’s perception of artificial intelligence (AI) in security operations. Notably, while some security operations leaders may not foresee a significant AI impact in the next five years, a remarkable 61% believe that AI could effectively handle up to 30% of security operations. Even more intriguingly, 17% of respondents envision this percentage increasing to an impressive 50%. This shift in perspective underscores the increasing belief in AI’s potential to support cybersecurity efforts.

Although the specific roles AI will play in SecOps are still uncertain, the report underscores significant room for innovation and advancement in this field. AI holds the promise of addressing critical cybersecurity challenges, such as reducing false positives, which, in turn, will bolster the industry’s defense capabilities. However, security professionals are advised to remain vigilant regarding the sources of AI information and to understand if AI capabilities have been trained on specific data sets and the potential implications.

Despite an anticipation for AI adoption, 74% of security professionals find it challenging to envision how AI will assist them in their tasks. AI is still in its early stages, and a lack of expertise, resources, and time are identified as barriers to its effective use.

The report also delves deeper into the role of automation, revealing that security teams unanimously stress the importance of automating tasks to enhance operational efficiency. Notably, 53% of respondents prefer to eliminate the time spent on reporting, a task that is currently among the least automated, with 70% admitting that they do not leverage automation for this purpose. This presents a clear opportunity for AI to be utilised in automating reporting and other repetitive or mundane tasks, thereby enhancing the satisfaction, efficiency, and effectiveness of security teams. Additionally, 42% of security professionals believe that automation will provide superior contextual information, aiding in more informed decision-making.

However, implementing automation processes comes with its challenges, as outlined in the report. While most respondents reported moderate success in the implementation of their automation projects, they acknowledged the complexity and time-consuming nature of the journey. Specifically, 42% found automation implementation to be challenging and time-intensive, with an additional 21% indicating that it was more demanding than initially anticipated. Nevertheless, an overwhelming majority (73%) attested that the effort invested in automation was worthwhile.

John Maynard, CEO of Adarma, emphasised, “Artificial intelligence has the potential to enhance detection, reduce false positives, and improve decision-making in response actions, including isolation, quarantine, and containment. However, we must proceed with vigilance. This technology, along with our ability to use it securely in our organisations, is still in its early stages. We advocate for careful oversight of AI and its decision-making processes until we have confidence and trust in its capabilities. Teams should identify specific domains where AI can provide the most significant advantages and conduct thorough research and monitoring to ensure desired results can be achieved. Engage with your workforce to ensure they understand the potential risks, emphasizing that the goal is not to stifle innovation but to comprehend and manage associated risks.”

Adarma’s report underscores the transformative potential of AI and automation in the realm of SecOps. These findings offer valuable insights into the evolving landscape of cybersecurity, particularly in how innovation and adaptability will safeguard organisations against emerging threats in the future.



Source link