This is an AI translated post.
Splunk Releases 2024 Security State Report
- Writing language: Korean
- •
- Base country: All countries
- •
- Information Technology
Select Language
Summarized by durumis AI
- Splunk's 2024 Security State Report reveals that 93% of organizations are using generative AI, but 34% lack related policies, raising concerns about the use of generative AI.
- Generative AI can be a useful tool for both security professionals and attackers, making it crucial for security professionals to win the AI adoption race against attackers.
- The report highlights that generative AI can help address cybersecurity talent shortages, but compliance burdens can lead to decreased job satisfaction for cybersecurity professionals.
According to a global survey, 93% of participating companies are using publicly available generative AI, but 34% of them have not established a policy for generative AI.
Splunk Inc. (NASDAQ: SPLK), a leading data platform company, has released a 2024 State of Security report titled “The AI Arms Race,” in collaboration with research firm ESG (Enterprise Strategy Group).
Splunk's annual State of Security report addresses the security challenges facing businesses today. This year, more than 1,650 security professionals participated and indicated that while cybersecurity is easier to manage than in the past, cybersecurity professionals are competing with attackers to leverage generative AI (Generative AI).
The report found that there has been a widespread adoption of generative AI tools within teams. Organizations that have adopted a more advanced approach to developing cybersecurity programs have significant budget, resources, and authority, and are well-positioned to embrace cutting-edge generative AI tools and technologies. However, despite the widespread adoption of generative AI, many organizations lack clear AI policies or a full understanding of the broader implications of the technology. There is also a debate among cybersecurity leaders about whether cybersecurity professionals or attackers will have the upper hand.
Key findings from the report:
· 93% of respondents indicated that their organizations are already using publicly available generative AI across the business, and 91% said their security teams are using AI.
· Despite the high adoption rate, 34% of organizations said they have not yet established a policy for generative AI, and 65% said they do not fully understand the implications of generative AI.
· 44% of respondents ranked generative AI as their top security initiative for 2024, surpassing cloud security.
· Cybersecurity leaders are divided on whether cybersecurity professionals or attackers will have the upper hand when it comes to generative AI. 45% of respondents said generative AI would give attackers an advantage, while 43% said it would give cybersecurity professionals an edge.
“We're in the golden age of AI, and both malicious attackers and security professionals are trying to take advantage of this opportunity," said Patrick Coughlin, senior vice president of Global Technical Sales at Splunk. "The adoption of generative AI provides organizations with a new opportunity to streamline processes, improve productivity, and minimize employee burdens. Unfortunately, generative AI also offers unprecedented advantages to attackers, and in this new threat landscape, cybersecurity professionals must stay ahead of attackers in the race to leverage the power of the AI generation and use it safely.”
“While the advancement of generative AI technology has made it easier to build better cybersecurity defenses, make informed decisions, and close critical skills gaps, we must not overlook the fact that many companies are at risk from generative AI-based attacks," said Won-Sik Choi, Managing Director of Splunk Korea. “Like the rest of the world, Korea has many organizations using generative AI, but in reality, there are no proper policies in place related to generative AI. Security and innovation are closely related, and we need to establish careful generative AI policies without sacrificing innovation.”
In recent years, cybersecurity hiring has proven to be a significant challenge for aspiring professionals entering the industry. The report indicated that generative AI could be a solution to this challenge, helping organizations more efficiently identify and onboard new talent. Furthermore, most cybersecurity professionals expect generative AI to improve employee speed and productivity.
· 86% of cybersecurity leaders said that generative AI would help them hire more cybersecurity talent and close the skills gap.
· 58% of respondents said that generative AI would help onboard new talent quickly.
· 90% of security executives said that new hires could leverage generative AI to develop their capabilities from a Security Operations Center (SOC) perspective.
· 65% of respondents said that generative AI would help increase the productivity of experienced cybersecurity professionals.
In addition, most security professionals are facing regulatory compliance pressure. The emergence of stricter compliance requirements has significantly increased the risk for security leaders who may be personally liable if their organizations experience a breach. This change in the compliance landscape is one of the biggest reasons for increased vigilance and responsibility in the security industry.
· 76% of respondents said that the risk of personal liability had made cybersecurity less attractive as a career field, and 70% said they had considered leaving their jobs due to job stress.
· 62% of respondents said they were impacted by compliance changes such as mandatory disclosure of significant breaches. Meanwhile, 86% said they would prioritize budget allocations toward meeting compliance requirements over achieving security best practices.
· 63% of respondents predicted that organizations would avoid risk by being overly cautious and overreporting breaches as major incidents to avoid punishment.
The 2024 State of Security report is available at the following link:
https://www.splunk.com/ko_kr/campaigns/state-of-security.html
Research methodology
The 2024 State of Security report survey was conducted in collaboration with ESG between December 2023 and January 2024. 1,650 security executives and professionals from 11 countries participated in the survey: Australia, France, Germany, India, Japan, Netherlands, New Zealand, Singapore, the United Kingdom, and the United States. They represent 16 industries: aerospace and defense, business services, consumer goods, education, financial services, government (federal/national, state, and local), healthcare, life sciences, manufacturing, technology, media, oil/gas, retail/wholesale, telecom, transportation/logistics, and utilities.
About Splunk Inc.
A Cisco company, Splunk Inc. helps organizations build a safer and more resilient digital world. When organizations face security, infrastructure, and application problems, Splunk has emerged as a trusted partner, preventing these issues from turning into bigger incidents, absorbing the shock of digital disruptions, and accelerating digital innovation for its customers. Splunk and Splunk> are trademarks and registered trademarks of Splunk Inc. in the United States and other countries. All other brand names, product names, or trademarks are the property of their respective owners. © 2024 Splunk Inc. All rights reserved.
Website: https://www.splunk.com
Contact
Splunk PR Agency
Weber Shandwick
Jimin Oh