Adarma Cyber Insiders Vol 3 Digital spreads FINAL 2 - Flipbook - Page 14
03
One of the report’s key findings is
the phenomenon of “tool sprawl.”
A staggering 61% of cybersecurity
professionals face challenges due to
the overwhelming complexity and
clutter in the market. While some
tools excel in monitoring specific
data sources, they often lack visibility
into other critical IT infrastructure
components.
Challenge 3:
TOOL SPRAWL –
A DOUBLE-EDGED
SWORD
This creates what the report
aptly describes as “analytic islands”
that hinder comprehensive threat
detection.
Scott McElney, CISO of the Weir
Group, warns about the pitfalls of
accumulating too many tools:
“More tools could add more risk if
you don’t have the expertise to finetune and harmonise them across
your digital ecosystem. Security
professionals tend to specialise in one
technology, making it difficult to find
someone who can specialise across
multiple technologies.”
Figure 2: No. of tools vs. intent to consolidate
100%
80%
60%
40%
20%
0%
1
2
3
4
No, we don't see a need
to consolidate tools
5
6
7
8
No, no plan yet,
but we see a need
to consolidate
9
10
11
12
13
14
Yes, plan to but haven't
consolidated it yet
15
16
17
Yes, we are
consolidating it
Challenge 4:
IMPLEMENTING AI
AND AUTOMATION
Artificial Intelligence (AI) and
automation hold great potential for
security operations. According to
the report, 61% of SecOps leaders
believe AI can manage up to 30% of
security tasks, with 17% projecting this
number to rise to 50% in the coming
years. While AI is still in its infancy, it’s
anticipated to provide better contextual
information, reduce manual tasks, and
increase efficiency and accuracy.
One key application of AI in
cybersecurity is the reduction of
false positives. AI has the potential
to understand, based on a specific
environment and user behaviour,
what constitutes a genuine alert.
14
|
ADARMA CYBER INSIDERS
AI can manage up to 30%
of security tasks, with
17% projecting this
number to rise to 50%
in the coming years.
However, some argue that AI
currently generates more alerts
than it eliminates. “95% of alerts are
false positives, but they still require a
human to look at them; arguably, AI
could reduce that significantly,” notes
the cyber operations director of a
major UK insurer.
18
To combat this complexity, 80% of
respondents are either consolidating
their security tools or planning to do
so. They believe that consolidation
will lead to easier management, fewer
integrations, and reduced reliance
on specialised expertise, ultimately
maximising the efficacy of their
current products.
