Cybersecurity professionals are losing confidence and control over their current detection tools as the volume of attacks continues to increase, with some seeking to artificial intelligence (AI) for possible solutions.
About 60% of security operations center (SOC) practitioners believe that market participants flood them with “unnecessary alerts” to evade responsibility for breaches, according to a report. study released Friday by a cybersecurity provider Vectra AI.
Also: AI can now solve reCAPTCHA tests as accurately as possible
According to a survey of 2,000 security professionals worldwide, 47% expressed a lack of confidence in the effectiveness of their tools. Overwhelmed by the deluge of security alerts, 71% fear missing a real attack while 51% say they can’t keep up. growing number of security threats.
As it stands, 52% say their security tools increase their workload rather than reduce it. Overall, 73% of respondents have implemented at least 10 security tools, while 45% have more than 20 tools in place.
Also: AI is changing cybersecurity and businesses must wake up to the threat
The study further highlights that 60% of respondents believe vendors are pushing for tools that generate too many alerts to avoid liability in the event of a breach. Additionally, 71% believe market participants should take more responsibility for failure to stop a violation.
Some 81% of SOC practitioners estimate they spend more than two hours per day reviewing and triaging security events.
Also: You don’t need to pay for antivirus software – here’s why
About half describe their security tools as a hindrance rather than a help in identifying real cyberattacks, highlighting that they can only handle 38% of the alerts they encounter, although only 16% are classified as “real attacks”.
To cope, some are turning to AI. About 89% of them will use more AI-based tools over the next year to replace legacy threat detection and response applications.
Also: A third of all generative AI projects will be abandoned, according to Gartner
85% of them reported that their AI investments and deployment have increased over the past year, and 67% of them rate the technology’s impact on their ability to identify and to manage threats.
Not only did AI help reduce the workload of 75% of respondents over the past year, it also reduced feelings of burnout for 73% of them, according to the study .
Also: The 4 biggest AI-generated code challenges Gartner left out in its latest report
“It is clear that (security professionals) are increasingly frustrated with their current threat detection tools which, due to the lack of an integrated attack signal, often create additional work rather than streamlining the process ” said Mark Wojtasiak, vice president of research and research at Vectra AI. strategy. “The data suggests that the tools used for threat detection and response, and the vendors who sell them, are not holding up their end of the bargain.”
Even if SOC teams believe AI delivers an attack signal that will help them prioritize threats and reduce alert fatigue, trust must be reestablished, Wojtasiak said. “Vendors will need to show how they add value beyond just the technologies they sell,” he said.
Also: The Best AI for Coding in 2024 (And What Not to Use)
“As the market saturates with tools claiming ‘AI’ capabilities, practitioners need to identify solutions that truly reduce noise and add real value,” added Sharat Nautiyal, director of security engineering for the Asia Pacific and Japan region of Vectra AI.
