Cybersecurity

What’s Next for Cybersecurity Teams? AI, Automation & Real-Time Workflows 

April 29, 2025

Collaboration

Editor’s Note: This article is part of our RSA Conference 2025 content series, highlighting the operational realities facing today’s cybersecurity leaders. We’ll be on-site at RSAC 2025 and invite you to connect with us to explore how secure real-time collaboration can help close the gap between threat and response. 

Each year, RSAC highlights the most pressing challenges and innovations in cybersecurity, setting the stage for what’s next. This year, the conversation is laser-focused on how AI and automation are transforming detection, response, and collaboration in ways that demand our attention. 

One recent study found that 55% of organizations had implemented AI-powered cybersecurity tooling by August 2024; just 17% had done the same by May 2024. With Gartner reporting that 96% of decision-makers agree AI will play a pivotal role in the future of cybersecurity, this is a trend that shows no signs of slowing down. 

But the big question isn’t whether AI and automation will continue to influence cybersecurity — it’s how effectively we can integrate these tools to boost speed, precision, and resilience while ensuring that these advancements empower human teams.  

With all this in mind, let’s dig a little deeper into how AI and automation are transforming cybersecurity teams and what your organization can do to prepare for the AI-driven future. 

The Shift: AI & Automation are Reshaping Security Teams 

AI and automation are no longer just on the horizon. They’re here and actively reshaping how we detect, respond to, and mitigate threats.  

The sheer volume of data being generated every day has far outpaced what human teams can handle without intelligent systems. In fact, 97% of security operations center (SOC) analysts are worried they’ll miss a critical notification due to the torrent of alerts that flood their screens every day. 

But technology alone isn’t enough to solve the problem of information overload. Instead, organizations need to think about how to integrate these advanced tools into workflows and use them to support — rather than replace — human expertise.  

Automation plays a critical role in eliminating repetitive tasks and streamlining operations. If organizations want to boost productivity, strengthen security, and reduce response times, they need to automate as many processes as possible, freeing up teams to focus on strategic high-value work.  

To paraphrase DEF CON and Black Hat founder Jeff Moss’s remarks from the Munich Cyber Security Conference: “Automate everything in security. Then for the things you can’t automate, automate those.”  

By embracing this mindset, we can free up skilled professionals to focus on complex challenges that require creativity and judgment, thereby enhancing both efficiency and resilience in our security operations. And as threats become more sophisticated, that resilience is more important than ever.  

Mattermost’s partnerships with Oracle, Microsoft, and Ask Sage demonstrate how AI-driven collaboration can enhance security operations. By integrating generative AI into our platform, we’re providing real-time insights and structured communication channels that help teams find the signal in the noise, responding to threats faster and with greater precision. 

There’s no shortage of data to back this up.  

A recent study from Hyperproof, for example, found that 65% of security and compliance practitioners believe AI will play a critical role in enhancing workflow optimization. That number speaks to a growing consensus: Automation and AI aren’t just helpful — they’re becoming mission-critical. 

Why Cyber Teams Need to Evolve 

AI and automation offer incredible potential, but they also force us to rethink how cybersecurity teams operate. It’s not enough to have the right tools — organizations need workflows that can keep pace with the insights those tools generate.  

The real challenge is speed. As AI accelerates detection and analysis, teams need to be prepared to act on insights immediately. That’s where many organizations struggle.  

Traditional workflows weren’t designed to handle the sheer volume and velocity of modern threat intelligence. And when collaboration breaks down, even the best AI systems fall short.  

The National Institute of Standards and Technology (NIST) recently released a draft update to its Ransomware Risk Management framework. It highlights the importance of integrating advanced technologies like AI and automation to better manage and mitigate risks. This update is a timely reminder that our approaches must evolve just as quickly as the technologies we deploy. 

At the same time, compliance and accountability are more critical than ever. AI systems are increasingly making high-impact decisions, and we have to ensure those tools remain transparent, fair, and ethical.  

At Mattermost, we’ve built our platform around the principles of data sovereignty and secure collaboration, providing a foundation organizations can trust — even as their workflows and tools continue to evolve.  

How Organizations Can Prepare 

RSAC 2025 offers a perfect setting to explore how AI, automation, and collaboration tools are evolving. As we all look to the future, I see three critical areas for organizations to focus on.  

1. Invest in Secure Collaboration Platforms 

Security is only as strong as your ability to communicate effectively. At Mattermost, we’ve integrated AI capabilities through partnerships like the one with Ask Sage, providing real-time insights while maintaining control over sensitive data.  

By integrating generative AI tools into a secure collaboration platform, teams can leverage real-time insights to enhance decision-making and operational productivity — all while keeping sensitive data safe, entirely under their control.    

2. Develop Comprehensive Automation Strategies 

Automation should complement human expertise — not replace it. Creating systems where automated processes handle repetitive tasks allows analysts to focus on complex decision-making.  

To maximize impact, organizations should align automation efforts with clear operational goals and risk priorities. Regularly reviewing and refining automation strategies ensures they evolve alongside emerging threats and business needs. 

3. Strengthen Compliance and Ethical Standards 

Adopting new technologies comes with new responsibilities. Organizations must ensure their AI systems are transparent, accountable, and ethically sound.  

Our commitment to data sovereignty and auditability at Mattermost helps organizations stay compliant, even as their environments continue to evolve.  

What’s Next for Cybersecurity Teams? 

AI and automation are reshaping how we approach cybersecurity. But to get the most out of these technologies, they need to be integrated into agile, well-coordinated teams. The organizations that figure out how to make AI work for them — not just around them — will be best positioned to stay resilient in an increasingly complex landscape.  

At Mattermost, we’re dedicated to building tools that help cybersecurity teams thrive. We’re excited to connect with many of you at RSAC 2025 and share more about where we’re heading next. If you’re interested in meeting us, please book a meeting and say hello

For ongoing insights and daily takeaways from the RSA Conference 2025, visit our RSA 2025 Insights Hub.

mm

Ian is CEO and Co-Founder of Mattermost. He previously founded SpinPunch, Inc., an online video game company with millions of players across 190 countries. Prior to SpinPunch, Ian was VP of Product at Flickme, a movie streaming startup backed by Sequoia Capital, Warner Brothers, and Sony Pictures. He also ran product management for Microsoft SkyDrive (now “OneDrive”) and Hotmail (now “Outlook.com”) and led engineering teams for Microsoft Office. Ian holds over a dozen patents in analytic applications and is an alumnus of the University of Waterloo, where he worked at Trilogy Software during school, and the Stanford Graduate School of Business, where he served as a teaching assistant for Andy Grove and Myron Scholes.

Read More Collaboration Articles