Cybersecurity professionals see potential in machine learning, but they need education and guidance Credit: Thinkstock At Black Hat last week, you couldn’t pass a slot machine without some cybersecurity technology vendor crowing about machine learning or artificial intelligence (AI). Yup, machine learning algorithms have great potential to help with security analytics and employee productivity, but this technology is in its infancy and not well understood.Want proof? ESG asked 412 cybersecurity professionals to assess and characterize their knowledge of machine learning/AI as it relates to cybersecurity analytics and operations technologies. Of the total survey population, only 30% of respondents claim to be very knowledgeable in this area. In other words, 70% of cybersecurity professionals really don’t understand where machine learning and AI fit.Furthermore, cybersecurity pros were asked if their organizations have deployed or plan to deploy machine learning/AI technologies for cybersecurity analytics and operations. Only 12% say their organization has done so extensively. Infosec professionals see potential here—only 6% of respondents have no plans to deploy machine learning/AI technologies for cybersecurity analytics and operations. Good upside for cybersecurity technology vendors, but lots of work remains. The cybersecurity industry must: Educate the market. To be clear, few cybersecurity pros care about the underlying technology. Rather, they really need to know what it can and can’t do.Identify use cases. Similarly, CISOs want to know how to apply this technology for maximum benefit today and where it can be added for incremental value in the future.Leverage existing technologies. Note to machine learning/AI cybersecurity technology vendors: Make sure you build off existing tools rather than ask CISOs to adopt new servers, user interfaces and reports. Smart machine learning/AI vendors will partner with SIEM vendors such as IBM, LogRhythm, and Splunk, for example. HPE is also doing some interesting integration between Introspect (Niara) and ClearPass (Aruba).Provide help. I’m convinced that the most successful machine learning/AI cybersecurity technology vendors will bundle their wares with professional and/or managed services.As a fellow geek, I find machine learning/AI technology extremely cool, but no one is buying technology for technology sake. The best tools will help CISOs improve security efficacy, operational efficiency and business enablement. Related content analysis 5 things security pros want from XDR platforms New research shows that while extended detection and response (XDR) remains a nebulous topic, security pros know what they want from an XDR platform. By Jon Oltsik Jul 07, 2022 3 mins Intrusion Detection Software Incident Response opinion Bye-bye best-of-breed? ESG research finds that organizations are increasingly integrating security technologies and purchasing multi-product security platforms, changing the industry in the process. By Jon Oltsik Jun 14, 2022 4 mins Security Software opinion SOC modernization: 8 key considerations Organizations need SOC transformation for security efficacy and operational efficiency. Technology vendors should come to this year’s RSA Conference with clear messages and plans, not industry hyperbole. By Jon Oltsik Apr 27, 2022 6 mins RSA Conference Security Operations Center opinion 5 ways to improve security hygiene and posture management Security professionals suggest continuous controls validation, process automation, and integrating security and IT technologies. By Jon Oltsik Apr 05, 2022 4 mins Security Practices Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe