AI Security Research Portal
conceptactiveConcepts

AI Cybersecurity Operations

Synthesis

AI in cybersecurity operations is represented by alert triage, incident response, threat detection, vulnerability repair, and analyst-assistance workflows.

Evidence Base

This page was generated from the batch ingest of SRC-20260702-raw-papers-batch, SRC-20260702-raw-whitepapers-batch, and SRC-20260702-raw-news-batch. Treat it as a navigation and synthesis page; promote individual statements into claim pages when they become decision-relevant.

Representative Sources

TitleKindDateTagsRaw
Before You Hand Over the Wheel: Evaluating LLMs for Security Incident Analysispaper2026-03-06Adrian Taylor, Grant Vandenberghe, Madeena Sultana, Sourov Jajodia, Suryadipta Majumdar, agentic-evaluationraw
PAIEL: Protocol-Aware and Context-Integrated Protocol Explanation Using LLMs for SOCsconference_paper2026-02-23ai-for-security, ai-soc, context-compression, protocol-analysis, rag, structured-contextraw
Non-Disruptive Disruption: An Empirical Experience of Introducing LLMs in the SOCconference_paper2026-02-23ai-for-security, ai-soc, co-creation, ethnography, human-ai-collaborationraw
Cognitive Threat Detection for SOC Operations: Automating Manipulation Tactic Analysis in Election Sconference_paper2026-02-23ai-for-security, ai-soc, cognitive-threat, election-security, llm-routingraw
Experiences of Using Agentic AI to Fill Tooling Gaps in a Security Operations Centerpaper2026Faayed Al Faisal, Kritan Banstola, Xinming Ou, ai-agent, ai-for-security, alert-triageraw
Carbon Filter: Scalable, Efficient, and Secure Alert Triage for Endpoint Detection & Responseconference_paper2025-10-20Adam Bates, Jonathan Oliver, Muhammad Adil Inam, Raghav Batta, ai-for-security, ai-socraw
CORTEX: Collaborative LLM Agents for High-Stakes Alert Triagepaper2025-09-30Bowen Wei, Chris Jordan, Howard Liu, Jinhao Pan, Kun Luo, Yuan Shen Tayraw
LLMs in the SOC: An Empirical Study of Human-AI Collaboration in Security Operations Centrespaper2025-06Cecile Paris, Fatemeh Jalalvand, Martin Lochner, Mohan Baruwal Chhetri, Ronal Singh, Shahroz Tariqraw
Alert Fatigue in Security Operations Centres: Research Challenges and Opportunitiesjournal_paper2025-04-04Cecile Paris, Mohan Baruwal Chhetri, Shahroz Tariq, Surya Nepal, ai-for-security, ai-socraw
Severity-based triage of cybersecurity incidents using kill chain attack graphsjournal_paper2025-03Basel Katt, Lukas Sadlek, Muhammad Mudassar Yamin, Pavel Celeda, ai-for-security, ai-socraw
AI-Augmented SOC: A Survey of LLMs and Agents for Security Operationspaper2025ai-for-security, alert-triage, incident-response, llm-agents, security-operations, socraw
Large Language Models Can Provide Accurate and Interpretable Incident Triageconference_paper2024-10Changhua Pei, Chaoyun Zhang, Chetan Bansal, Dongmei Zhang, Gaogang Xie, Jianhui Liraw

Open Questions

Related