Michael Gregg
Field CIO - Strategist,
Palo Alto Networks
The Modern SOC: Leveraging AI and ML
Tuesday, October 28, 2025 | 9:45AM–10:30AM CT | EDUCAUSE Commons, Cybersecurity & Privacy Central, Poster Area
Session Type:
Poster Session
Delivery Format:
Poster
The needs of the Security Operations Center (SOC) have changed. Without automation and AI, organizations take too long to detect security incidents. When they detect them, remediation takes too long. In addition, the ever-growing data volumes handled by SOCs pose a challenge. Traditional SIEM solutions demand substantial engineering efforts, have a slow time-to-value, and predominantly rely on manual intervention by SOC analysts with a reactive security approach. This leads to increased open alerts, longer resolution times, and increased SOC analyst fatigue.
Join our panel session to learn about an AI-driven security operations platform that harnesses the power of artificial intelligence (AI) and automation, can simplify security operations, stop threats at scale, and accelerate incident remediation. Hear from our internal experts and customers about how a modern SOC collects, normalizes, and intelligently stitches together data, enabling native machine learning and automation. This has yielded:
• Over 99% decrease in open alerts
• Over 10X improvement in incident closure rate
• Over 60% automatic incident resolution
• MTTR reduced from hours/days to minutes
Ultimately, a modern SOC frees up the SOC employees and provides users with the metrics and measurements to demonstrate effectiveness and efficiency.
