Key findings include:
- Talent Retention Crisis: A critical 62% of SOC professionals believe their organizations aren't doing enough to retain staff.
- AI/ML Underperformance: While heavily adopted, AI/ML tools rank among the lowest in satisfaction and are often used "out of the box" without intentional integration or clear ownership.
- EDR Leads in Trust: Endpoint or Extended Detection and Response (EDR/XDR) remains the most trusted and highly rated technology in use, earning the highest satisfaction score.
- Data Management Blind Spots: A concerning 42% of SOCs dump all incoming data into their SIEM without a clear retrieval or management plan.
- Reactive Incident Response: Incident response starts are primarily triggered by internal security alerts for 85% of respondents.