Automation and AI in the SOC: From Hype to High Impact

The Annual 2025 Evolution of Cybersecurity Automation and AI Adoption ThreatQuotient Research Report sheds light on how senior cybersecurity professionals across the U.S., U.K., and Australia, are advancing their automation strategies, navigating key use cases, and addressing emerging challenges by country, job titles and industry.  

Automation has become table-stakes for modern SOCs, and AI is moving from hype to measurable impact. This report explores the data behind automation budgets, adoption challenges, ROI metrics, and the first real AI use cases inside security operations.  

Key Stats

97% say automation is now business-critical

49% received net new budget for automation this year

#1 AI use case: assisting alert triage with human oversight

Top 3 concerns: ethics, geopolitical risk, and security

Key Findings at a Glance

Automation Autonomy: SOC outcomes are shifting from static rules to adaptive, explainable AI.

Leadership Paradox: Executives are both the strongest champions and the most cautious gatekeepers of AI adoption.

Measurement: MTTD/MTTR have become the gold-standard KPIs for automation and AI.

Trust and Skills: Ethical risk, accuracy, and human capability gaps slow AI progress.

The research report reveals how your peers are approaching Automation and AI in the SOC across roles, industries, and countries, offering comprehensive analysis, detailed sector breakdowns, and practical guidance for cybersecurity leaders.