Analisti della Sicurezza delle Informazioni

The human element of monitoring technology. I don't feel you can fully trust technology monitoring technology.

The main reason for a SOC analyst or information security analyst role will be automated is because of alert fatigue. The current model responding doesn't work anymore especially when you have thousands of alerts to deal with. No one has the time threat detection rules to for each event or a malicious event. ML will either aim to replace or optimize this.

You can't trust AI to protect your networks, it will probably be able to get manipulated by hackers in the future.

In the Cyber Threat Intelligence circles automation is already occuring. My job is being replaced by automated scripts that create and generate documentation and use APIs to scrape the data. most of it will be junk and not targeted the same way as a human but hey that's what the company is doing oh and they are asking me to work with the programmer who is literally making me firable. So angry. Would avoid this role if possible.

As the nature of cybersecurity still requires a human keen eye and problem solving skills with some creativity, which are beyond what a machine can do right now, it's uncertain that machines will take the job of an information security analyst, as it covers many aspects.

Attackers will find vulnerabilities with AI softwares just as they would on a normal system. AI might give a false sense of security rather than making a system actually more secure. I doubt AI will be able to protect against social engineering and the ever changing vulnerabilities/exploitations.

it's an arms race of AI vs AI. historically arms races don't tend to slow down

Could be disrupted by Quantum computers

Social engineering risks are highly unlikely to be detected by AI.

Unlikely. Security analysis often have to think outside the box to find novel vulnerabilities.

New regulations will force the software developing companies to create less vulnerabilities in products (at the source.) Hardware vendors will similarly have to sell networked devices with secure settings programmed in by default. This will increase the ability of automated systems to detect any remaining vulnerabilities, but will not completely remove the need for technicians to maintain, remediate, and upgrade the systems. There will still be a need to touch the hardware. Depending on individual situation, some companies will use more of AI tech than the others. We can already see something similar in the engineering, accounting, and law practice, where paralegals and drafters have not been completely replaced by software. Sole practitioners might use automation more extensively than the large corporations, but there will be a legal requirement for a human audit. In addition, location-independent digital nomads who train themselves to use the automation tools could do a lot of accurate work in a short amount of time, as independent consultants and freelancers, and do business with multiple clients. Making the choice to transition from repetitive and tedious manual work to automation, will be akin to transitioning from flintstones to nuclear power. Nuclear power still needs humans, and so will information security solutions.

Automated penetration testing

Once "ai" models are implemented with a dash of agency/cognitive architecture to find novel vulnerabilities and models are implemented to fix those vulnerabilities in tandem, finding exploitable bugs will become increasingly difficult with little ROI for the pentesters, hunters, whatever.

It'll be a race between red and blue team businesses to implement increasingly better models. Social engineering sure, but meh honestly. Will you be able to find incredibly difficult scraps or oversights the model missed? Will it be worth the risk and investment of the pentester? Overall bleak outlook.

I believe that is is less likely because mostly automatically finding vulnerabilities may be performed by AI but it will be the security analyst to enable computer do it, help it learn by giving feedback, as the result may not always be right. AI will help make task easier and fast for security analyst

there are some areas such as malware detection and IPS , IDS that will be fully automated , but others like policy and social engineering are very hard to .

information Security Analysts help protect computer systems and data from cyber threats. They monitor networks for suspicious activity, investigate breaches, and put security measures in place to keep information safe. This role is important because it helps organizations prevent cyberattacks and protect sensitive information.