Splunk, a global leader in cybersecurity and technical monitoring, has released its annual report titled “Security State 2025,” which outlines the growing challenges faced by cybersecurity operations centers worldwide. The report reveals several obstacles that hinder organizational performance and expose them to threats. Notably, 46% of participants reported spending more time maintaining tools than on defending their organizations, while only 11% expressed full confidence in artificial intelligence performing critical tasks. Additionally, 66% of organizations experienced data breaches in the previous year, marking it as the most common security incident.
As threats escalate, including those augmented by artificial intelligence, organizations must be prepared and confident in their ability to safeguard themselves and their clients. A unified security center, which combines human expertise with advanced AI capabilities, is proposed as a collective solution to these challenges.
Michael Fanning, Chief Information Security Officer at Splunk, stated, “Organizations are increasingly relying on AI for threat detection and other essential tasks, yet we don’t believe AI can completely manage a security center for valid reasons. Meanwhile, human oversight remains a fundamental element of effective cybersecurity, with AI serving to enhance and support human capabilities during critical moments for protection.”
Nat Leiser, Chief Information Security Officer at Children’s National Hospital, added, “With the continuous increase in the volume and complexity of cyberattacks, security teams are under constant pressure. The Splunk report reveals significant challenges in the sector, including workload accumulation, alert fatigue, and a lack of skilled personnel. Integrating AI and automation can help mitigate these risks and equip security teams with smarter tools to ensure our institutions remain strong and secure.”
Security teams face technological challenges due to external threats when the security center does not operate efficiently, leading to major obstacles in detecting and responding to threats. The report identifies several key vulnerabilities, with 59% citing tool maintenance as a primary source of inefficiency, while 78% indicated that their security tools are fragmented and unintegrated. Furthermore, 69% reported that this fragmentation poses medium to significant challenges.
Organizations see AI as a potential solution to operational issues and workforce shortages, with 59% noting a significant or moderate improvement in efficiency post-alerts. Additionally, 56% prioritize implementing AI in their security workflows this year, while one-third (33%) plan to address skill gaps through AI and automation.
