Skip to main content
See every side of every news story
Get Started
SubscribeLogin
Published loading...Updated

SOC teams are automating triage — but 40% will fail without governance boundaries

Summary by VentureBeat
The average enterprise SOC receives 10,000 alerts per day. Each requires 20 to 40 minutes to investigate properly, but even fully staffed teams can only handle 22% of them. More than 60% of security teams have admitted to ignoring alerts that later proved critical.Running an efficient SOC has never been harder, and now the work itself is changing. Tier-1 analyst tasks — like triage, enrichment, and escalation — are becoming software functions, a…

6 Articles

VentureBeatVentureBeat
Reposted by
RocketNewsRocketNews
Center

SOC teams are automating triage — but 40% will fail without governance boundaries

The average enterprise SOC receives 10,000 alerts per day. Each requires 20 to 40 minutes to investigate properly, but even fully staffed teams can only handle 22% of them. More than 60% of security teams have admitted to ignoring alerts that later proved critical.Running an efficient SOC has never been harder, and now the work itself is changing. Tier-1 analyst tasks — like triage, enrichment, and escalation — are becoming software functions, a…

·San Francisco, United States
Read Full Article
The Hacker NewsThe Hacker News
Reposted by
IT Security News - cybersecurity, infosecurity newsIT Security News - cybersecurity, infosecurity news

From Triage to Threat Hunts: How AI Accelerates SecOps

If you work in security operations, the concept of the AI SOC agent is likely familiar. Early narratives promised total autonomy. Vendors seized on the idea of the "Autonomous SOC" and suggested a future where algorithms replaced analysts. That future has not arrived. We have not seen mass layoffs or empty security operations centers. We have instead seen the emergence of a practical reality.

Read Full Article
CyberSecurity NewsCyberSecurity News

Cybersecurity Co-Piloted with Ai Reduces More than 40% of Alerts in Socs

In the face of the high volume of sophisticated attacks, the most diffuse perimeters, the greater exposure of sensitive data, the shortage of specialized talent and the need to act quickly, the cyber-security co-piloted with artificial intelligence (AI) generative manages to boost the efficiency and the evolution towards the autonomy of the operating centers (SOC) in the management of alerts to know what has happened and, from there, to respond …

Read Full Article
techloy.comtechloy.com

Alert Fatigue Is a Business Risk, Not a SOC Problem

For some time now, people have seen alert fatigue in SOCs as an operational issue: far too many alerts and not enough staff to deal with them. The average SOC receives hundreds of alerts per day, with 70% of alerts typically ignored due to volume.This explanation may be convenient but it is dangerously incomplete— alert fatigue isn't just a technical inconvenience or operational bottleneck. It is a material business risk that impacts revenue, re…

Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • 50% of the sources lean Left, 50% of the sources are Center
50% Center

Factuality Info Icon

To view factuality data please Upgrade to Premium

Ownership

Info Icon

To view ownership data please Upgrade to Vantage

techloy.com broke the news in on Tuesday, January 27, 2026.
Too Big Arrow Icon
Sources are mostly out of (0)

Similar News Topics

Technology icon

Technology

News
Feed Dots Icon
For You
Search Icon
SearchBlindspot LogoBlindspotLocal