Artificial Intelligence & Machine Learning,
Next-Generation Technologies & Secure Development,
Security Operations
Troy Leach of the Cloud Security Alliance Discusses AI’s Impact on SOC Analysts’ Efficiency
Security operations centers (SOCs) face an increasing demand for speed without compromising investigative thoroughness. A recent study from the Cloud Security Alliance indicates that artificial intelligence may be making significant strides in meeting these demands. In simulated environments, SOC analysts utilizing AI tools completed investigations more quickly, maintained higher accuracy rates, and produced more comprehensive results compared to their manual counterparts.
The comprehensive benchmark study evaluated the performance of 148 analysts, with half employing Dropzone AI and the other half relying on conventional manual methods. The findings indicated that the group aided by AI finished investigations up to 61% faster and generated 23% more accurate reports. Notably, AI-assisted analysts demonstrated the same level of reporting completeness across various scenarios, whereas those using manual techniques exhibited fatigue and diminishing thoroughness over time.
Troy Leach, Chief Strategy Officer at Cloud Security Alliance, remarked, “We consistently observe that SOC analysts utilize AI to generate much of the necessary language accompanying their findings. The AI is able to create documentation without compromising the quality or depth of the response as time progresses.”
In a recent video interview with Information Security Media Group, Leach also touched upon several critical themes:
He explored how AI agents can expedite threat detection while maintaining accuracy, the importance of user trust and perceptions in the adoption of AI within SOCs, and the necessity for organizations to achieve a balance between automated processes and human oversight.
With over twenty-five years of experience in advocating for responsible technology, Leach has dedicated his career to improving quality of life and fostering equity in the tech landscape. Additionally, he serves on numerous advisory boards as a recognized expert in information security and financial payments. He founded a consulting firm that specializes in leveraging blockchain technology, zero trust approaches, and various cloud services to establish secure environments. Before this, he played a pivotal role in the establishment and leadership of the PCI Security Standards Council.
