Building The Future Of Smarter Security Operations
Security teams are overwhelmed, but a smarter, unified approach—powered by AI and streamlined ... More workflows—could finally bring order to the chaos inside the SOC.
Security Operations Centers are meant to be the command hubs of cybersecurity. But many are bogged down by tool sprawl, false alerts and burned-out teams. Splunk's State of Security 2025 report shows that security teams are spending more time maintaining tools than stopping threats—and it's costing them.
I sat down with Michael Fanning, CISO at Splunk, to talk about what insights the reports revealed for him. He summed it up clearly: 'The future SOC is extremely streamlined. Analysts will be freed from mundane, repetitive tasks, so they can apply their expertise where it truly matters: defending the organization.'
SOCs today face a flood of alerts. About 59% of respondents say they get too many, and 55% are dealing with too many false positives. That slows down response times and wears down teams. Nearly half of security professionals say they spend more time managing tools than actually protecting systems.
Fanning noted that this isn't just inefficient—it's demoralizing. Spending an hour on a low-value alert that turns out to be nothing is frustrating, and it adds up fast. Downtime during an incident can cost over $500,000 per hour.
AI is already making a difference in the SOC. About 59% of security leaders say it has improved their team's efficiency. Fanning was surprised by how many teams have already started using it. 'Greater than 50% of the respondents had mentioned that their security operations are already adopting AI in some form or fashion.'
But AI is not a fix-all. It still needs oversight. Only 11% of respondents fully trust AI for mission-critical decisions. Most prefer a 'human-in-the-loop' approach. That means AI helps with repetitive tasks, but people still make the final call.
Fanning put it this way: 'I don't see it as a complete replacement, but more of an aid to help an engineer or an analyst do their job faster than they were before.'
Detection engineering is a top skill for modern security teams—but also one of the hardest to find. About 41% of teams say they lack it. Detection as Code is catching on because it lets teams create, test and improve detections like software. But only a third of organizations are using it regularly.
Fanning stressed that quality detection is key. With good data and smart rules, analysts waste less time and respond faster. Better alerts mean better decisions.
Overwork is a serious problem. More than half of SOCs report staff burnout. Many professionals have even thought about leaving the field.
Some automation can help—but it also raises new questions. If AI handles the basics, how will new analysts learn the fundamentals? Fanning pointed out that his early help desk experience gave him the skills to succeed in cybersecurity. If junior staff skip that step, they may lack the deeper knowledge needed to solve complex problems.
Splunk's own SOC has automated many tier-one tasks. But instead of cutting jobs, they use the freed-up time for higher-priority work. It's about shifting focus, not shrinking teams.
One major problem is tool sprawl. Seventy-eight percent of respondents say their tools don't work well together. That makes fast response harder. When teams adopt a unified platform, they report better results—faster response times, less tool upkeep and stronger coverage.
Security is no longer just a job for the SOC. It takes support from across the company—from HR and IT to legal and engineering. But only a small number of teams always share data across these departments. Fanning says that building those connections is crucial for quicker, more accurate responses.
The future of the SOC is about using people, processes and platforms in a smarter way. That means making thoughtful use of AI, improving detection methods, closing skill gaps and unifying security workflows.
The threats are faster, and the stakes are higher. But the Splunk report suggests that with the right strategy, SOCs can keep up—and even get ahead.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Bloomberg
33 minutes ago
- Bloomberg
Couche-Tard Sees ‘Clear Path' to Seven & i Deal With US Stores Divestment
Alimentation Couche-Tard Inc. said several potential buyers have made proposals to acquire convenience stores in the US that overlap with Seven & i Holdings Co., showing progress toward a deal that could help the Canadian retailer win regulatory approval for its proposal to buy its Japanese rival. The two agreed earlier this year to discuss the potential divestment of more than 2,000 stores in the US and seek out interested parties in order to address concerns by Seven & i over a merger being blocked by the US Federal Trade Commission. Couche-Tard also pushed back against any parallels to the failed $24.6 billion merger of grocery chains Kroger Co. and Albertsons Cos.
Wall Street Journal
36 minutes ago
- Wall Street Journal
These L.A. Business Owners Say Protest-Fueled Mayhem Is Hammering Their Sales
LOS ANGELES—Johnny Wong has been painting over graffiti outside his downtown flower shop every morning since political protests marred by vandalism and violence began late last week. On Wednesday morning, he gave up. 'We just got tired,' said Wong, whose revenue is down 80% in the past few days. He closes each day around noon. Foot traffic has plummeted and many people aren't braving the streets to pick up orders.
Fox News
38 minutes ago
- Fox News
Female athletes contest new NCAA ruling, claiming violations of federal anti-discrimination law
Eight women's college soccer, volleyball and track and field athletes have filed an appeal challenging the House v. NCAA antitrust settlement. U.S. District Judge Claudia Wilken approved the settlement last week, clearing the way for direct payments from universities to athletes. The eight women argue female athletes won't receive their fair share of $2.7 billion in back pay for athletes barred from making money off their name, image and likeness (NIL). Kacie Breeding of Vanderbilt; Lexi Drumm, Emma Appleman, Emmie Wannemacher, Riley Haas, Savannah Baron and Elizabeth Arnold of the College of Charleston; and Kate Johnson of Virginia lead the appeal. They all previously filed objections to the proposed settlement. Ashlyn Hare, one of the attorneys representing the athletes, said in a statement the settlement violates Title IX, the federal law that bans sex-based discrimination in education. "We support a settlement of the case, but not an inaccurate one that violates federal law. The calculation of past damages is based on an error that ignores Title IX and deprives female athletes of $1.1 billion," Hare said. "Paying out the money as proposed would be a massive error that would cause irreparable harm to women's sports." The House settlement figures to financially benefit football and basketball stars at the biggest schools, who are likely to receive a big chunk of the $20.5 million per year that colleges are permitted to share with athletes over the next year. Some athletes in other sports that don't make money for their schools could lose their partial scholarships or see their roster spots cut. "This is a football and basketball damages settlement with no real benefit to female athletes," Hare said. "Congress has expressly rejected efforts to exempt revenue-generating sports like football and basketball from Title IX's antidiscrimination mandate. The NCAA agreed with us. Our argument on appeal is the exact same argument the conferences and NCAA made prior to settling the case." The appeal, filed by the law firm Hutchinson Black and Cook of Boulder, Colorado, was first reported by Front Office Sports. It will be heard by the U.S. Court of Appeals for the Ninth Circuit. Follow Fox News Digital's sports coverage on X, and subscribe to the Fox News Sports Huddle newsletter.
