信息安全分析师

Arjun Mepa (适度) 1 year ago

The main reason for a SOC analyst or information security analyst role will be automated is because of alert fatigue. The current model responding doesn't work anymore especially when you have thousands of alerts to deal with. No one has the time threat detection rules to for each event or a malicious event. ML will either aim to replace or optimize this.

2 0 Reply

Meh 1 year ago

Once "ai" models are implemented with a dash of agency/cognitive architecture to find novel vulnerabilities and models are implemented to fix those vulnerabilities in tandem, finding exploitable bugs will become increasingly difficult with little ROI for the pentesters, hunters, whatever.

It'll be a race between red and blue team businesses to implement increasingly better models. Social engineering sure, but meh honestly. Will you be able to find incredibly difficult scraps or oversights the model missed? Will it be worth the risk and investment of the pentester? Overall bleak outlook.

0 0 Reply

Old Spice (没有机会) 1 year ago

You can't trust AI to protect your networks, it will probably be able to get manipulated by hackers in the future.

0 0 Reply

Anon 1 year ago

In the Cyber Threat Intelligence circles automation is already occuring. My job is being replaced by automated scripts that create and generate documentation and use APIs to scrape the data. most of it will be junk and not targeted the same way as a human but hey that's what the company is doing oh and they are asking me to work with the programmer who is literally making me firable. So angry. Would avoid this role if possible.

1 0 Reply

Jack (低) 2 years ago

Social engineering risks are highly unlikely to be detected by AI.

0 0 Reply

James (低) 2 years ago

Unlikely. Security analysis often have to think outside the box to find novel vulnerabilities.

0 0 Reply

Richard P (适度) 3 years ago

Could be disrupted by Quantum computers

0 0 Reply

FD 3 years ago

New regulations will force the software developing companies to create less vulnerabilities in products (at the source.) Hardware vendors will similarly have to sell networked devices with secure settings programmed in by default.

This will increase the ability of automated systems to detect any remaining vulnerabilities, but will not completely remove the need for technicians to maintain, remediate, and upgrade the systems. There will still be a need to touch the hardware. Depending on individual situation, some companies will use more of AI tech than the others. We can already see something similar in the engineering, accounting, and law practice, where paralegals and drafters have not been completely replaced by software. Sole practitioners might use automation more extensively than the large corporations, but there will be a legal requirement for a human audit.

In addition, location-independent digital nomads who train themselves to use the automation tools could do a lot of accurate work in a short amount of time, as independent consultants and freelancers, and do business with multiple clients.

Making the choice to transition from repetitive and tedious manual work to automation, will be akin to transitioning from flintstones to nuclear power. Nuclear power still needs humans, and so will information security solutions.

0 0 Reply

Fakiha (低) 4 years ago

I believe that is is less likely because mostly automatically finding vulnerabilities may be performed by AI but it will be the security analyst to enable computer do it, help it learn by giving feedback, as the result may not always be right. AI will help make task easier and fast for security analyst

0 0 Reply

Michael (低) 4 years ago

there are some areas such as malware detection and IPS , IDS that will be fully automated , but others like policy and social engineering are very hard to .

0 0 Reply

frankie (极有可能) 4 years ago

Automated penetration testing

0 0 Reply