Global State of Security Operations Report Finds 93% of SOCs Employing AI and Machine Learning Tools to Detect Advanced Threats
On Oct 19, 2020, Micro Focus and CyberEdge Group released the 2020 State of Security Operations report. The report highlights that over 93% of security operations centers (SOCs) are utilizing AI and ML to enhance advanced threat detection. Additionally, 89% of respondents plan to adopt Security Orchestration and Automated Response (SOAR) tools within a year. The report reveals that 90% of organizations are using the MITRE ATT&CK framework for threat detection, amid rising cybersecurity challenges due to the pandemic, particularly increased cyberthreat volumes and unmanaged devices.
- 93% of SOCs employ AI and ML technologies for advanced threat detection.
- 89% of respondents expect to acquire SOAR tools within the next 12 months.
- 96% of organizations are using cloud for IT security operations.
- 45% reported increased volume of cyberthreats due to COVID-19.
- 40% cited higher risks from workforce usage of unmanaged devices.
SANTA CLARA, Calif., Oct. 19, 2020 /PRNewswire/ -- Micro Focus (LSE: MCRO; NYSE: MFGP), in partnership with CyberEdge Group, today published the 2020 State of Security Operations report, which reveals that security operations centers (SOCs) across the globe are most concerned with advanced threat detection and are increasingly looking to artificial intelligence (AI) and machine learning (ML) technologies to proactively safeguard the enterprise. The report's findings show that over 93 percent of respondents employ AI and ML technologies with the leading goal of improving advanced threat detection capabilities, and that over 89 percent of respondents expect to use or acquire a Security Orchestration and Automated Response (SOAR) tool within the next 12 months. These findings indicate that as SOCs continue to mature, they will deploy next-gen tools and capabilities at an unprecedented rate to address gaps in security.
"The odds are stacked against today's SOCs: more data, more sophisticated attacks, and larger surface areas to monitor. However, when properly implemented, AI technologies such as unsupervised machine learning, are helping to fuel next-generation security operations, as evidenced by this year's report," said Stephan Jou, CTO Interset at Micro Focus. "We're observing more and more enterprises discovering that AI and ML can be remarkably effective and augment advanced threat detection and response capabilities, thereby accelerating the ability of SecOps teams to better protect the enterprise."
As the volume of threats rise, the report finds that 90 percent of organizations are relying on the MITRE ATT&K framework as a must-use tool for understanding attack techniques, and that the most common reason for relying on the knowledge base of adversary tactics is for detecting advanced threats. Further, the scale of technology needed to secure today's digital assets means SOC teams are relying more heavily on tools to effectively do their jobs. With so many responsibilities, the report found that SecOps teams are using numerous tools to help secure critical information, with organizations widely using 11 common types of security operations tools and with each tool expected to exceed 80 percent adoption in 2021.
Key observations include:
- COVID-19: During the pandemic, security operations teams have faced many challenges. The biggest has been the increased volume of cyberthreats and security incidents (45 percent globally), followed by higher risks due to workforce usage of unmanaged devices (40 percent globally).
- Most severe SOC challenges: Approximately 1 in 3 respondents cite the two most severe challenges for the SOC team as prioritizing security incidents and monitoring security across a growing attack surface.
- Cloud journeys: Over 96 percent of organizations use the cloud for IT security operations, and on average nearly two-thirds of their IT security operations software and services are already deployed in the cloud.
The 2020 State of Security Operations report takes a close look at the front lines of IT security and security operations, providing a deep analysis of the most pressing industry challenges and the technologies being embraced to solve for those challenges. This survey specifically references the opinions of IT security professionals who find and mitigate vulnerabilities, detect threats, perform security investigations, respond to incidents, and do countless other operational tasks on a daily basis.
More Information
The 2020 State of Security Operations report is available today.
Methodology
Micro Focus, in partnership with CyberEdge Group, developed a 15-question web-based survey. The survey was promoted via email to 410 security operations professionals in the United States, United Kingdom, Germany, India, and Japan in August 2020.
Join Micro Focus on LinkedIn and follow @MicroFocus on Twitter.
About Micro Focus
Micro Focus delivers enterprise software to empower our 40,000 customers worldwide to digitally transform. With a broad portfolio, underpinned by a robust analytics ecosystem, the company enables customers to address the four core pillars of digital transformation: Enterprise DevOps, Hybrid IT Management, Predictive Analytics and Security, Risk & Governance. By design, these tools bridge the gap between existing and emerging technologies so customers can run and transform at the same time.
Contact:
PAN Communications
Harper Schmidt
415-544-7200
microfocus@pancomm.com
View original content to download multimedia:http://www.prnewswire.com/news-releases/global-state-of-security-operations-report-finds-93-of-socs-employing-ai-and-machine-learning-tools-to-detect-advanced-threats-301154755.html
SOURCE Micro Focus
FAQ
What are the key findings from the 2020 State of Security Operations report by MFGP?
How has COVID-19 impacted security operations according to MFGP?
What percentage of organizations is using the MITRE ATT&CK framework for threat detection?
When was the 2020 State of Security Operations report released?
