false

State of
Security 2025

The stronger, smarter SOC of the future

Explore how security teams can transform their SOCs to overcome skills gaps, new threats, and internal inefficiencies.

sos-lp-graphic-1

Efficiency Challenges

Maintenance and data gaps stifle SOC progress

Too much busywork prevents many SOC teams from strategically and efficiently defending the organization:

 

  • 46% say they spend more time maintaining tools than defending the organization.
  • 59% say they have too many alerts and 55% deal with too many false positives.
  • 57% report losing valuable investigation time due to gaps in their data management strategy.

AI in the SOC

AI supercharges SOC productivity

AI can solve efficiency-related woes in the SOC — especially with a healthy level of trust and domain-specific knowledge for more expert recommendations: 

 

  • 59% say they’ve moderately or significantly boosted efficiency in the SOC with AI.
  • 61% say they trust AI somewhat to perform mission-critical activities in the SOC.
  • 63% agree domain-specific AI significantly or extremely enhances security operations compared to publicly available tools.
sos-lp-graphic-2
sos-lp-graphic-3

Enhancing threat detection

Future threats call for better detection methods

Attacks are becoming more sophisticated, which means SOCs must keep up by adopting more nimble and high-quality detection methods:

 

  • 77% say while their standing is good, they plan to improve the quality of their SOC’s detections.
  • 63% say they would like to frequently or always use detection as code in the future, yet only 35% do so currently.
  • 62% say adopting detection as code has unlocked test-driven development.

Unified workflows

SOC collaboration speeds up incident response

Connecting teams and tools is the key to easing the pain of dispersed environments in the SOC and beyond:

 

  • 78% say their security tools are disconnected and dispersed.
  • 59% say adopting a unified threat detection and response platform has brought faster incident response.
  • 78% say sharing data with observability teams enables them to detect incidents faster.
sos-lp-graphic-4

Want to take your SOC into the future?

Download State of Security 2025 to learn strategies to eliminate inefficiency, prepare your SOC for the future, and defend against the next generation of threats.

Get the report