Increased Skepticism Towards Security Threat Detection Devices Revealed in New Research
Article Title: Asia Pacific SOC Practitioners Embrace AI to Streamline Threat Detection and Response
In a significant shift towards automation, 77% of Security Operations Centre (SOC) practitioners in the Asia Pacific region have increased their investment and use of Artificial Intelligence (AI) in the past year, according to the "2024 State of Threat Detection and Response Research Report: The Defenders' Dilemma" released this week by Recorded Future.
The report highlights the challenges faced by SOC teams, who are often managing an overwhelming number of tools and dealing with a flood of alerts. This situation has led to concerns about missing critical threats and a growing dissatisfaction with legacy threat detection tools.
The study found that these tools are creating more work for practitioners, resulting in growing vendor distrust. In fact, 31% of SOC practitioners in the region do not trust their current threat detection tools, and 48% claim that security vendors flood them with pointless alerts to avoid responsibility for a breach.
However, the report also paints a positive picture of AI's impact on the region's SOC practitioners. AI has been found to reduce workload and burnout, with 70% of practitioners reporting a reduction in their workload in the past 12 months, and 66% stating that AI has reduced feelings of burnout.
AI is seen as a means to streamline the process, replace legacy tools, and reduce alert fatigue. Effective AI solutions should integrate across all hybrid attack surfaces, helping to identify and prioritise threats, accelerate response times, and reduce alert fatigue.
The report also reveals that nearly two-thirds (69%) of SOC practitioners in the Asia Pacific region worry they will miss a real attack buried in a flood of alerts. This concern is not unfounded, as practitioners continue to struggle with alert accuracy, with a significant number of alerts going unaddressed due to time constraints and insufficient tool support.
Despite these challenges, nearly 70% of SOC practitioners in the region believe AI has the potential to accurately identify and respond to threats. This faith in AI is reflected in the findings that 64% of practitioners believe AI has positively impacted their ability to identify and deal with threats.
The shift towards AI is not just about replacing legacy tools, but also about keeping pace with the increasing number of security threats. 51% of SOC practitioners in the Asia Pacific region believe they cannot keep pace with the increasing number of security threats, highlighting the need for more efficient and effective tools.
Across Asia Pacific, 60% of SOC teams have more than ten tools in place, and 29% have more than 20 tools. This complexity is causing frustration, with many teams struggling to manage their tools effectively.
To rebuild trust in AI-powered threat detection and response tools among SOC practitioners in the Asia Pacific region, vendors need to show how they add value beyond just the technologies they sell. This could involve demonstrating their ability to help identify and prioritise threats, accelerate response times, and reduce alert fatigue.
In conclusion, the Asia Pacific region is witnessing a significant shift towards AI in threat detection and response. This shift is driven by the need to streamline processes, reduce workload and burnout, and keep pace with the increasing number of security threats. However, vendors must demonstrate their value beyond just the technologies they sell to rebuild trust and meet the needs of SOC practitioners in the region.
Read also:
- Li Auto faces scrutiny after crash test involving i8 model and a truck manufacturer sparks controversy
- Construction and renovation projects in Cham county granted €24.8 million focus on energy efficiency
- Threat looms over an ancient rock art site in Australia as the government prolongs the existence of a giant gas facility nearby
- Weekly proceedings in the Federal Diet (Bundestag)
