Sumo Logic

70% of IT and security leaders say they have fully or mostly automated their threat detection and response process.

45% of enterprise organizations say security and DevOps teams are very aligned on tooling and workflows.

Only 51% of security operations leaders say their current SIEM is very effective at reducing mean time to detect and respond to threats.

80% of enterprise organizations say security and DevOps use shared observability tools.

100% of IT and security leaders say a unified platform for logs, metrics, and traces would be valuable for their security and DevOps teams.

90% of security leaders say AI/ML is extremely or very valuable in reducing alert fatigue and improving detection accuracy.

45% of enterprise organizations use six or more security operations tools.

25% of IT and security leaders say their threat detection and response process is fully automated.

93% of enterprise organizations use at least three security operations tools.

55% of IT and security leaders report having too many point solutions in their security stack.

90% of security operations leaders say supporting data sources from multi-cloud and hybrid-cloud environments is very or extremely important for their SIEM, highlighting the continued need for data pipeline management.

52% of security operations leaders are very confident their current SIEM can scale to meet future security and cloud operations needs.

Even among those confident in their current SIEM, 75% still say they are considering alternative solutions like AI-powered cloud-native solutions.

70% of security leaders say AI shapes their trust in current and future SIEM solutions.

84% of security teams rate integrated SOAR as important or extremely important.

One-third of respondents say enhancing threat detection and response is their top cybersecurity priority this year.

Nine out of ten respondents still consider the SIEM approach relevant for safeguarding their organisation.

85% of security teams cite out-of-the-box threat intelligence integration as essential to SIEM.

34% of respondents report a reduction in average incident response time when using AI playbooks.

90% of security leaders cite AI as a key driver in selecting new solutions (SIEM or alternatives).

50% of leaders report difficulty aligning legacy SIEM tools with their broader technology stack.

73% of security leaders are reassessing their SIEM solutions.

Concerns around vendor lock-in remain high, with 95% of those evaluating new options citing flexibility as a critical factor.