How Reddit built an AI-powered SOC with Tines
Blog post from Tines
Reddit's approach to integrating AI into their security operations center (SOC) was carefully structured to enhance efficiency without losing control. Faced with increasing alert volumes and complex investigations, Reddit implemented an AI-assisted investigation system named Event Horizon using Tines, which significantly reduced the time needed to process alerts from 15 minutes to about 30 seconds. This system allows even junior analysts to benefit from the expertise of senior engineers by following the same investigation workflows. While AI streamlines data gathering and initial assessments, high-impact decisions, such as locking accounts, still require human input to avoid unintended consequences. The workflows are designed to handle not just detection and response, but also resolution, ensuring continuity for affected users. Reddit's strategy emphasizes a collaborative approach where AI supports human decision-making, allowing the SOC to scale effectively while maintaining oversight and adaptability for future challenges.
No tracked trend matches for this post yet.