- Google Cloud Survey finds that even cybersecurity -experts are overwhelmed by too many threat messages
- The field of security is suffering from a skill deficiency, which puts businesses at risk
- Maybe surprising scientists say the answer is AI
Security professionals have long reported on high levels of stress and burnout, which are composed only by a lack of skills in the industry, and new research claims the large amount of threats, as well as the data these threats produce, are at risk.
Research from Google Cloud found that threat notifications are not the useful tool they could be, and can actually be overwhelming security teams, with nearly two -thirds (61%) of security practitioners saying they think there are, ‘too many trussels intelligence data’, and 60% believe there are too few threat analysts to succeed through the data effectively.
“Instead of helping the effectiveness, countless [threat intelligence] Feeds flood security team with data, making it difficult to extract useful insight or prioritize and respond to threats. Security Team needs visibility in relevant threats, AI-run context in scale and skilled defenders to use action insights, enabling a shift from a reactive to a proactive security position, ”the study argued.
Needles in a haystack
Too many data causes analysts to be stuck in ‘reactive state’, where 86% of respondents say that their organization has gaps in its understanding of the pacifier landscape, as well as 85% saying more focus, could be put on new threats, and 72% are mostly reactive to threats, unable to come ahead of trends.
Adjacent research from Sentinelone shows that a large part of cloud security alarms are false positive (not relevant to the organization). The majority of respondents (53%) say that over half of the warnings they receive are a false positive that outlines how real ‘alarm fatigue’ is.
This makes it difficult to secure cloud environments, says 92% of respondents, with too many point solutions leading to management and integration issues, creating more warnings, warnings of lower quality and therefore slower reactions to attacks thanks to the confusion.
Perhaps not surprisingly, both sets of research sets have a suggestion to solve this problem – and it does not invest in better training and support to tackle the skill of skills. Instead, you guessed it, it’s ai.
AI can help facilitate the pressure by improving an organization’s ability to operationalize threat information, generate ‘easy to read summary’ and recommend the next step to ‘Uplevel Junior Analyts’, says Google’s research.
“We believe the key is to integrate threat information directly into security work and tools so that it can be obtained and analyzed quickly and efficiently,” noted Jayce Nichols, Google Cloud Director, Intelligence Solutions.
“AI has an important role in this integration that helps synthesize the raw data, manage repeated tasks and reduce wear and tear to free human analysts to focus their efforts on critical decision making.”
