December 27, 2017 By Douglas Bonderud 2 min read

Security staff are spending too much time on tasks that can be better handled by software. As noted by ZDNet, IT decision-makers estimate that employees waste three hours per day dealing with issues from application feature gaps, and security admins see that waste reach 10 hours per week, according to a recent study commissioned by LogRhythm. The result? Teams can’t work as quickly as they’d like.

In a landscape driven by emerging threat vectors and insider threats, speed underpins great security response. How can software systems keep pace with security expectations?

Teams Need More Than Traditional Software

Here’s the hard truth: Software alone isn’t enough to defend against evolving attack methods. As IT Pro pointed out, firmware-based infections are becoming more common as cyberattackers realize the value of BIOS or flash RAM persistence, making it nearly impossible for standard security methods to fight back.

But this is where software systems see the most use: as antivirus and antimalware defenses that are naturally handicapped by their own architecture. Meanwhile, security staff fall behind on identifying, cataloging and combating new threats thanks to these software limitations.

The solution may lie in shifting the focus of software. Instead of putting applications in charge of threat detection and shortchanging security professionals on features they need to get their job done, enterprises should consider swapping roles to improve outcomes on both ends.

Tapping Into AI

Fifteen years ago, the software-defined movement was just getting off the ground. Advocates suggested a world where network devices and decision-making processes weren’t fundamentally linked, in turn opening the door for less expensive, off-the-shelf hardware. It sounded great, but companies quickly realized that shifting the decision-making process off-site wasn’t quite so easy. And with the rise of IoT devices prompting a secondary slide in software security, it’s no surprise that security professionals aren’t exactly keen on giving software more control.

The evolution of processing power and software sophistication suggests another option for security teams: artificial intelligence (AI). While less than half of survey respondents reported using AI, research from Gartner suggested the potential for a 6.2 billion-hour recoup if businesses can effectively implement AI solutions.

At a basic level, this means assigning AI-controlled processes repetitive and mundane tasks that are prone to human error and require significant time investment. The next step is using artificially intelligent software with decision-making capabilities that complement, rather than compete with, human insight to create a kind of security symbiosis greater than the sum of its parts.

Staff and administrators are wasting time on tasks that can be better handled by software. Software-defined security is effectively a nonstarter (at least for now), but there’s a new kid on the block: AI. Leveraged for automation and empowered for insight, AI could be the speed boost enterprise security needs to stay on track.

More from

CVE backlog update: The NVD struggles as attackers change tactics

4 min read - In February, the number of vulnerabilities processed and enriched by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) started to slow. By May, 93.4% of new vulnerabilities and 50.8% of known exploited vulnerabilities were still waiting on analysis, according to research from VulnCheck.Three months later, the problem persists. While NIST has a plan to get back on track, the current state of common vulnerabilities and exposures (CVEs) isn't keeping pace with new vulnerability detections. Here's a…

The rising threat of cyberattacks in the restaurant industry

2 min read - The restaurant industry has been hit with a rising number of cyberattacks in the last two years, with major fast-food chains as the primary targets. Here’s a summary of the kinds of attacks to strike this industry and what happened afterward. Data breaches have been a significant issue, with several large restaurant chains experiencing incidents that compromised the sensitive information of both employees and customers. In one notable case, a breach affected 183,000 people, exposing names, Social Security numbers, driver's…

What can businesses learn from the rise of cyber espionage?

4 min read - It’s not just government organizations that need to worry about cyber espionage campaigns — the entire business world is also a target.Multipolarity has been a defining trend in geopolitics in recent years. Rivalries between the world’s great powers continue to test the limits of globalism, resulting in growing disruption to international supply chains and economics. Global political risk has reached its highest level in decades, and even though corporate attention to geopolitics has dropped since peaking in 2022, the impact…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today