- 스플렁크, 2024년 보안 현황 보고서 발표 > 뉴스 - 스타트업 커뮤니티 씬디스
- 글로벌 조사 결과, 설문 참여 기업 중 93%가 공개된 생성형 AI를 사용하고 있지만 그중 34%는 생성형 AI 정책을 수립하지 않은 것으로 나…, 스타트업에 종사하시는 여러분들의 놀이터 씬디스는 스타트업 커뮤니티 입니다.
According to a global survey, 93% of surveyed companies are using publicly available generative AI, but 34% of them have not yet established a generative AI policy.
Splunk Inc. (NASDAQ: SPLK), a data platform specialist, has released its 2024 State of Security report, titled 'The AI Arms Race,' in collaboration with research firm ESG (Enterprise Strategy Group).
Splunk's annual State of Security report examines the security challenges that businesses face today. This year, over 1,650 security professionals participated, revealing that while cybersecurity is easier to manage than in the past, cybersecurity professionals are now competing with attackers to leverage generative AI (Generative AI).
The report reveals that teams within organizations have widely adopted generative AI tools. Organizations employing advanced approaches, compared to those developing cybersecurity programs, have significant budget, resources, and authority, putting them in a favorable position to adopt cutting-edge generative AI tools and technologies. However, despite the widespread adoption of generative AI, many organizations lack clear AI policies or a comprehensive understanding of the broader impact of this technology. Furthermore, cybersecurity leaders are divided on whether cybersecurity professionals or attackers will ultimately gain the upper hand.
Key Findings from the Report:
· 93% of respondents reported that their organization is already using publicly available generative AI across the business, and 91% stated that their security teams are using AI.
· Despite the high adoption rate, 34% of organizations have not yet established a generative AI policy, and 65% of respondents do not fully understand the implications of generative AI.
· 44% of respondents ranked generative AI as their top security initiative for 2024, surpassing cloud security.
· Cybersecurity leaders are split on whether cybersecurity professionals or attackers will gain the upper hand regarding generative AI. 45% of respondents believe that generative AI will favor attackers, while 43% believe it will provide an advantage to cybersecurity professionals.
“We are living in the golden age of AI, and both malicious attackers and security professionals are vying to capitalize on it,” said Patrick Coughlin, Senior Vice President, Global Technology Sales at Splunk. “The adoption of generative AI presents new opportunities for organizations to streamline processes, improve productivity, and reduce the burden on employees. Unfortunately, generative AI also provides attackers with unprecedented advantages. To address this new threat landscape, cybersecurity professionals need to leverage the power of the AI generation and stay ahead of attackers in the race to secure and safely utilize it.”
“While it's true that advancements in generative AI technologies have made it easier to build better cybersecurity defenses, make informed decisions, and bridge critical skills gaps, it's crucial to acknowledge that many businesses are exposed to risks posed by generative AI-based attacks,” said Wonsik Choi, Managing Director at Splunk Korea. “Similar to the global trend, many organizations in Korea are using generative AI, but appropriate policies regarding generative AI are not yet in place. Because security and innovation are closely intertwined, organizations must develop prudent generative AI policies without sacrificing innovation.”
In recent years, cybersecurity hiring has proven to be a significant challenge for aspiring newcomers to the industry. The report suggests that generative AI can be a solution to this problem by helping organizations identify and onboard new talent more efficiently. Moreover, the majority of cybersecurity professionals expect generative AI to accelerate employee productivity and enhance efficiency.
· 86% of cybersecurity leaders believe that generative AI can help them hire more cybersecurity newcomers, thereby closing the talent gap.
· 58% of respondents believe that generative AI will contribute to faster onboarding of new talent.
· 90% of security executives expect new recruits to be able to leverage generative AI to improve their capabilities in the Security Operations Center (SOC).
· 65% of respondents believe that generative AI will help improve the productivity of experienced cybersecurity professionals.
Furthermore, a large number of security professionals face compliance pressures. The emergence of stricter compliance requirements has significantly increased the risks borne by security leaders who may be held personally liable for organizational violations. This shift in the compliance landscape is a major reason for the heightened awareness and sense of responsibility in the security industry.
· 76% of respondents stated that the risk of personal liability has reduced the attractiveness of cybersecurity as a career path, and 70% have considered leaving their jobs due to job-related stress.
· 62% of respondents reported being impacted by changes in compliance requirements, such as mandatory disclosure of significant data breaches. Meanwhile, 86% indicated that they would prioritize budget allocation for meeting compliance requirements over achieving security best practices.
· 63% of respondents anticipate that organizations will become risk-averse, potentially overstating incidents to avoid penalties, leading to an exaggeration of data breaches as significant events.
The 2024 Splunk State of Security report can be found at the link below.
https://www.splunk.com/ko_kr/campaigns/state-of-security.html
Research Methodology
The survey for the 2024 State of Security report was conducted in collaboration with ESG between December 2023 and January 2024. 1,650 security executives and professionals from 11 countries, including Australia, France, Germany, India, Japan, the Netherlands, New Zealand, Singapore, the United Kingdom, and the United States, participated in the survey. These individuals represented 16 industries: aerospace & defense, business services, consumer products, education, financial services, government (federal/national, state & local), healthcare, life sciences, manufacturing, technology, media, oil & gas, retail/wholesale, telecom, transportation/logistics, and utilities.
About Splunk Inc.
Splunk Inc., a Cisco subsidiary, helps build a more secure and resilient digital world. Splunk has established itself as a trusted partner for customers by helping organizations prevent security, infrastructure, and application issues from escalating into larger incidents, absorbing the impact of digital disruptions, and accelerating digital transformation.
Splunk and Splunk> are trademarks and registered trademarks of Splunk Inc. in the United States and other countries. All other brand names, product names, or trademarks are the property of their respective owners. © 2024 Splunk Inc. All rights reserved.
Website: https://www.splunk.com
Contact
Splunk PR Agency
Weber Shandwick
Jimin Oh
Comments0