If your organization starts using generative AI for security ops (like threat hunting or incident response), does that impact how you think about your team's roles/responsibilities? Would you expect to need fewer staff for SecOps, or even more? More or fewer high-skilled employees?

Security & GRCTeam & Organizational DesignSecurity Operations Center (SOC)+1 more
2.4k views1 Upvote3 Comments
Information and Security Office & Enterprise Data Governance/AI in Finance (non-banking), 1,001 - 5,000 employees
In short, 'yes', as we leverage AI for security ops the role of first-level soc analyst becomes redundant. Basic questions that first-level analyst performs such as reviewing the logs and creating events/alerts, can be automated based on prompt questions that can be responded to by the LLM model or ChatBot AI functionality. Even if you pay extra for the capability, the human expense is reduced. 
I am not saying it today, but that is how we see it in the next 12 to 18 months as the features mature.
Chief Information Security Officer in Healthcare and Biotech, 1,001 - 5,000 employees
Yes. It will be concerning; if the employees are not trained enough. I would be limit this services till the time we don't identify the potential risks.
CIO in Telecommunication, 1,001 - 5,000 employees
I'd argue it's relatively unchanged.  As the industry continues to consolidate tools and automate security functions, the threat actors are also innovating and using the same tools against you.  In my experience we are simply shifting resources from older, but still necessary, security tools as they mature into newer threat defenses.

Content you might like

Can ISO 27001 compliance be considered as benchmark for security maturity of an organization?

Governance, Risk & ComplianceSecurity & GRC

Yes87%

No13%


156 PARTICIPANTS
1k views

If you had a magic wand - what's the #1 daily business challenge you'd eliminate?

People & LeadershipStrategy & ArchitectureCloud+57 more
CTO in Software, 201 - 500 employees
Without a doubt - Technical Debt! It's a ball and chain that creates an ever increasing drag on any organization, stifles innovation, and prevents transformation.
143 19 Replies
Read More Comments
47.1k views133 Upvotes325 Comments

What services matter most (or are your favorite) in alignment with your cloud provider? i.e. Database/warehouse (like Redshift), analytics, AI/ML…

Strategy & ArchitectureCloudEnd-User Services & Collaboration+24 more
Read More Comments
1.9k views3 Upvotes2 Comments

Would anyone be willing to share best practices about how their organization deals with ensuring Cookie Compliance, specifically to GDPR rules? Where should this sort of compliance review sit in an organization? The particular issue we have is who should review new web deployments that use cookies and to make the decisions on whether Cookies are Strictly Necessary or Functionality Cookies. For example is a Cookie required for a Live Chat to work Functionality or Strictly Necessary? Our Security team does not consider taking on these compliance reviews as their domain, as Cookie Compliance is not an internal security matter and the Data Protection team has a limited interest as the GDPR rules around Cookies apply in case of any Cookie being used by a website, whether or not it contains personal data. 

Security & GRCRegulatory Compliance
658 views1 Comment

When migrating to the cloud, what's the top security issue that concerns you?

CloudSecurity & GRC

Data security52%

Shared resources/services34%

Compliance11%

Other: please specify.1%


703 PARTICIPANTS
2.6k views5 Upvotes1 Comment