In a rallying cry to security professionals, CrowdStrike CEO George Kurtz warned that those who fail to embrace AI in their security operations will be left behind by relentless cybercriminals already leveraging the technology to break into networks at unprecedented speeds.
Speaking at the RSA Conference 2024 in San Francisco, Kurtz painted a stark picture of the challenges facing defenders in today's threat landscape. He revealed that CrowdStrike has observed adversaries breaking out of compromised systems and moving laterally within just two minutes and seven seconds – the fastest time recorded by the company in the past year.
"It took an adversary just 31 seconds to download their toolkit and start running reconnaissance tools, trying to exploit that system," Kurtz told the audience. "We know one of the real challenges in security is time. And we're going to talk a little bit about how we try to bend time in security."
Kurtz argued that traditional security information and event management (SIEM) solutions are no longer up to the task, bogged down by the sheer volume of data and, therefore, unable to keep pace with modern threats. He urged organizations to adopt "next-gen SIEM" solutions that integrate with security platforms, fuse data and AI automation, and provide advanced threat detection and automated response capabilities.
"The only SOC analysts that are going to be out of business are the ones that don't actually embrace AI," Kurtz warned. "Because AI is not going to do all of this, you're still going to need people to fly the planes. We're not there yet. But what I would say is, think about it, embrace it."
RELATED WHITEPAPER
Highlighting the potential of AI to revolutionize security operations, Kurtz described how next-gen SIEM could automate log management, break the cost-productivity curve, and provide contextual security intelligence – giving analysts deeper insights into threats and their potential impact.
"If you haven't seen some of this stuff, and you haven't actually played with it, it's incredibly powerful," he said. "I've been doing this for a long time. And I really think it has the ability to revolutionize security, but more importantly, the operations of security."
In his concluding remarks, Kurtz emphasized the urgency of adopting AI-driven security solutions, stating: "Every time we come to an RSA, we talk about threats, and attacks and how things get worse. And I think finally, we've got some good news in terms of helping the SOC have a little bit more fun and putting some rigor and process into stopping breaches. And that is the outcome that ultimately we're here for – stop the breach."
-
Cloudflare is cracking down on AI web scrapersNews Cloudflare CEO Matthew Prince said AI companies have been "scraping content without limits" - now the company is cracking down.
-
Swiss government data published following supply chain attack – here’s what we know about the culpritsNews Radix, a non-profit organization in the health promotion sector, supplies a number of federal offices, whose data has apparently been accessed.
-
RSAC in focus: Key takeaways for CISOsThe RSAC Conference 2025 spotlighted pivotal advancements in agentic AI, identity security, and collaborative defense strategies, shaping the evolving mandate for CISOs.
-
RSAC in focus: Quantum computing and securityExperts at RSAC 2025 emphasize the need for urgent action to secure data against future cryptographic risks posed by quantum computing
-
RSAC in focus: How AI is improving cybersecurityAI is revolutionizing cybersecurity by enhancing threat detection, automating defenses, and letting IT professionals tackle evolving digital challenges.
-
RSAC in focus: Collaboration in cybersecurityExperts at RSA Conference 2025 emphasised that collaboration across sectors and shared intelligence are pivotal to addressing the evolving challenges of cybersecurity.
-
RSAC in focus: Considerations and possibilities for the remainder of 2025As 2025 unfolds, RSAC explores the pivotal considerations and emerging possibilities shaping the cybersecurity landscape
-
RSAC Conference 2025: The front line of cyber innovationITPro Podcast Ransomware, quantum computing, and an unsurprising focus on AI were highlights of this year's event
-
RSAC Conference 2025: AI and quantum complicate securityOrganizations are grappling with the complications of adopting AI for security
-
RSAC Conference 2025 was a sobering reminder of the challenges facing cybersecurity professionalsAnalysis Despite widespread optimism on how AI can help those in cybersecurity, it’s clear that the threat landscape is more complex than ever
