State of Security 2025: The Stronger, Smarter SOC of the Future

43% of respondents face unrealistic expectations by leadership.

57% of respondents report losing valuable investigation time to data management gaps.

52% of respondents say their team is overworked.

59% of organizations have moderately or significantly boosted their efficiency with AI.

78% of respondents say sharing data with observability teams resolves incidents faster.

Over half (56%) of respondents have prioritized the application of AI to security workflows this year.

Nearly half (46%) of respondents spend more time maintaining tools than defending the organization.

31% of SOCs are using GenAI for Querying security data.

52% of respondents say stress on the job has prompted them to think about leaving cybersecurity altogether.

66% of organizations experienced a data breach in the past year, making it the most common security incident.

29% of SOCs are using GenAI for Writing/editing security policies.

78% of respondents say their security tools are dispersed and disconnected.

Only 11% of organizations fully trust AI for mission-critical tasks.

78% of respondents cited faster incident detection as a moderate to transformative benefit of a unified approach for threat detection and response.

66% of respondents noted quicker remediation as a moderate to transformative benefit of a unified approach for threat detection and response

59% of respondents report having too many alerts.

33% of SOCs are using GenAI for Threat intelligence analysis.

1 in 3 (33%) of respondents plan to fill skills gaps with AI and automation.

Compared to publicly available tools, 63% agree that domain-specific AI significantly or extremely enhances security operations.

59% of respondents say tool maintenance is the main source of inefficiency.

69% say disconnected and dispersed tools creates moderate to significant challenges.

55% of respondents report having to address too many false positives.