EP223 AI Addressable, Not AI Solvable: Reflections from RSA 2025

Guests:

• no guests, just us in the studio

Topics:

• At RSA 2025, did we see solid, measurably better outcomes from AI use in security, or mostly just "sizzle" and good ideas with potential?
• Are the promises of an "AI SOC" repeating the mistakes seen with SOAR in previous years regarding fully automated security operations? Does "AI SOC" work according to RSA floor?
• How realistic is the vision expressed by some [yes, really!] that AI progress could lead to technical teams, including IT and security, shrinking dramatically or even to zero in a few years?
• Why do companies continue to rely on decades-old or "non-leading" security technologies, and what role does the concept of a "organizational change budget" play in this inertia?
• Is being "AI Native" fundamentally better for security technologies compared to adding AI capabilities to existing platforms, or is the jury still out? Got "an AI-native SIEM"? Be ready to explain how is yours better!

Resources:

• EP172 RSA 2024: Separating AI Signal from Noise, SecOps Evolves, XDR Declines?
• EP119 RSA 2023 - What We Saw, What We Learned, and What We're Excited About
• EP70 Special - RSA 2022 Reflections - Securing the Past vs Securing the Future
• RSA ("RSAI") Conference 2024 Powered by AI with AI on Top — AI Edition (Hey AI, Is This Enough AI?) [Anton's RSA 2024 recap blog]
• New Paper: "Future of the SOC: Evolution or Optimization — Choose Your Path" (Paper 4 of 4.5) [talks about the change budget discussed]