AI and the Security Landscape: AI as a Defender Tool
AI has made attackers faster and more capable. It's also given defenders some of the most useful tools we've had in years. Here's where it actually helps — and where the hype gets ahead of the reality.
The hype around AI in security is substantial, and not all of it is earned. So I’m going to try to be specific about where AI actually moves the needle for defenders, and honest about where it mostly shows up in vendor slide decks and doesn’t do much else.
The alert problem
To understand why AI matters on the defensive side, you have to first understand the problem it’s trying to solve.
Modern security operations run on alerts. Lots of them. An enterprise SIEM in a reasonably active environment can generate thousands of alerts a day — and the overwhelming majority of them are noise. False positives from rules that are too broad, detections that fire on normal behavior, events that matter in isolation but don’t add up to anything actionable. Buried somewhere in that pile are the alerts that actually matter.
The traditional response to this was to write better rules. Tune the detections, reduce the noise, surface the signal. This works, up to a point. The problem is that rules are static. An attacker who knows what your rules are looking for can work around them. And writing a rule for every possible bad behavior requires you to have already imagined every possible bad behavior, which is not how attackers operate.
This is the problem AI is actually well-suited to address. Not because AI is magic, but because the specific things it does well — finding patterns in large datasets, identifying deviations from normal behavior, connecting signals that don’t obviously relate — map directly onto what defenders need.
Behavioral detection: knowing what normal looks like
The most meaningful shift AI has brought to detection is moving from signature-based thinking to behavioral thinking.
Signature-based detection asks: does this match something we’ve seen before? It’s fast, reliable for known threats, and completely blind to anything novel. An attacker using a new technique, or a known technique with minor modifications, sails right through.
Behavioral detection asks: does this look like how things normally work here? It builds a model of normal — what users typically access, when, from where, in what sequence — and flags deviations from that model. A user who suddenly starts accessing file shares they’ve never touched, downloading large volumes of data at 2am, from a device they’ve never used before: that pattern is suspicious regardless of whether any individual action trips a rule.
AI makes this tractable at scale. Building accurate behavioral baselines across thousands of users and devices, updating those baselines as normal behavior evolves, and surfacing anomalies without generating a flood of false positives — that’s genuinely hard to do with traditional rule-based approaches. It’s where machine learning earns its place.
The caveat worth stating clearly: behavioral detection is not magic. It generates false positives too, especially early in deployment before baselines are well-established. And it requires good data — garbage in, garbage out, same as any detection approach. But for catching the slow, deliberate attacks that rule-based systems miss, it’s a real improvement.
Alert triage: letting analysts focus on what matters
Even with better detection, analysts still face a volume problem. AI is starting to help here in ways that matter operationally.
Modern SIEM and SOAR platforms increasingly use AI to triage incoming alerts before a human analyst sees them. Not to make final decisions — that’s still a human job — but to sort, prioritize, and enrich. Correlating an alert with threat intelligence, checking whether the affected asset is a critical system, pulling in context from related events, scoring the alert’s likely fidelity: these are things AI can do faster and more consistently than a human who is also managing fifteen other things simultaneously.
The practical effect is that analysts spend less time on obvious noise and more time on things that actually warrant attention. For a team that is chronically understaffed — which is most teams — this is not a minor improvement. It changes what’s actually possible with the people you have.
The honest version of this: AI triage is only as good as the models and rules behind it. An AI that consistently de-prioritizes a certain class of alert because it’s been trained on data where that alert rarely mattered will bury the one time it does matter. Human oversight of what the AI is deprioritizing — not just what it’s surfacing — is important and often skipped.
Threat intelligence: connecting dots at speed
Threat intelligence has always had a gap between the volume of data available and the ability to make sense of it quickly. Indicators of compromise, adversary TTPs, campaign reports, vulnerability disclosures — there’s more of it than any team can fully absorb, and the value decays fast.
AI is genuinely useful here. It can ingest large volumes of threat intelligence data, correlate indicators across sources, identify overlaps between what’s showing up in your environment and what’s being reported in the wild, and surface the connections that would take an analyst days to find manually. Threat hunting gets faster when AI can generate hypotheses — “these three events in your logs share characteristics with this campaign profile” — that analysts can then investigate rather than having to find them from scratch.
It’s also worth noting what this doesn’t do: it doesn’t replace analysts who understand context. An AI that flags a correlation doesn’t know whether it’s actually meaningful in your environment, whether there’s a benign explanation, or whether the threat intelligence source is reliable. Those judgments still require humans. The AI is a starting point, not a conclusion.
Automated response: speed matters more than it used to
One area where AI is quietly changing things is automated response — the ability to take containment actions without waiting for a human to approve each one.
The attackers-move-fast problem is real. Dwell time — the gap between an attacker gaining access and a defender detecting and responding — has historically been measured in days or weeks. AI-assisted automation can compress parts of that response: isolating a compromised endpoint, blocking a suspicious IP, disabling a credential that’s showing signs of abuse, all within seconds of detection rather than hours.
This matters more now than it used to because the speed of AI-assisted attacks is increasing on the other side. An attacker using AI to accelerate reconnaissance and lateral movement operates on a timeline that a purely human response can’t match.
The obvious risk is automated response that gets it wrong — isolating a critical system during a business-critical process, blocking traffic that turns out to be legitimate, creating an outage while trying to prevent a breach. Good automation design is conservative: it automates the high-confidence, low-risk containment actions and escalates anything ambiguous to a human. The trick is knowing which is which, and that requires careful thought about your specific environment rather than accepting whatever the vendor ships out of the box.
Where the hype gets ahead of reality
A few things worth being skeptical about:
AI detection still generates false positives, sometimes lots of them, especially in complex or unusual environments. The sales pitch often glosses over the tuning work required to get a behavioral detection system to a point where it’s actually useful rather than just noisy in a different way.
“AI-powered” on a vendor’s product page means almost nothing specific. It could mean a sophisticated ML model trained on billions of events. It could mean a decision tree with a gradient boosting wrapper and a marketing team. Asking vendors to explain specifically what their model does, what data it was trained on, and how it handles novel environments is a reasonable thing to do. You’ll quickly learn which vendors have real answers.
AI doesn’t fix bad data. If your logging is incomplete, your SIEM coverage is patchy, or your asset inventory is a mess — and most environments have at least one of these problems — AI detection is working with the same gaps your rules-based detection was working with. The model can only find what the logs actually captured.
And AI doesn’t fix the staffing problem. It changes what your existing staff can do, which is genuinely valuable. But “AI will handle the alerts” is sometimes used as a reason to not invest in people, which is a mistake. The humans who understand what the AI is doing, can audit its outputs, and can make the judgment calls it can’t are still essential.
The honest balance
Here’s where I land on this: AI as a defender tool is real and getting more capable. Behavioral detection, alert triage, threat intelligence correlation, and automated containment are all areas where AI is delivering genuine operational value today — not in some theoretical future state, but in actual security programs running right now.
It’s not a silver bullet. Nothing in security is. It requires good data, careful tuning, human oversight, and a clear-eyed understanding of what it can and can’t do. Deployed thoughtlessly, it adds noise and false confidence. Deployed well, it genuinely changes what a security team can accomplish with the people and time they have.
The next post covers what I think is one of the more interesting areas in this whole discussion: the murky middle, where AI doesn’t sit cleanly on the attacker or defender side. Automated red teaming, prompt injection, AI systems attacking other AI systems. It gets complicated.
This is the third post in the AI and the Security Landscape series. The next post will cover the murky middle — AI capabilities that don’t fit neatly on either side of the line.