{"id":190948,"date":"2026-02-26T13:22:00","date_gmt":"2026-02-26T18:22:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/02\/26\/why-cybersecurity-data-science-is-the-new-security-frontier\/"},"modified":"2026-02-26T14:25:20","modified_gmt":"2026-02-26T19:25:20","slug":"why-cybersecurity-data-science-is-the-new-security-frontier","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/02\/26\/why-cybersecurity-data-science-is-the-new-security-frontier\/","title":{"rendered":"Why cybersecurity data science is the new security frontier"},"content":{"rendered":"<p><a href=\"https:\/\/siliconangle.com\/2026\/02\/26\/cybersecurity-data-science-new-security-frontier-vastforward\/\">Why cybersecurity data science is the new security frontier<\/a><\/p>\n<p><a href=\"https:\/\/siliconangle.com\/2026\/02\/26\/cybersecurity-data-science-new-security-frontier-vastforward\/\">https:\/\/siliconangle.com\/2026\/02\/26\/cybersecurity-data-science-new-security-frontier-vastforward\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-02-26 13:22:00<\/a><\/p>\n<p>Source Domain: <a href=\"siliconangle.com\">siliconangle.com<\/a><\/p>\n<p>Author: <a href=\"\"><\/a><\/p>\n<p> Using an unordered list, summarize the following article with between 4 and 8 key points.<br \/>\n\t\t\t\t\t\tCybersecurity data science has shifted enterprise defense from a human-led response to a high-speed computational challenge.\u00a0As attackers automate and compress breach timelines, organizations must analyze massive volumes of telemetry in near-real-time to keep pace.<br \/>\nNowhere is this speed mismatch more visible than in the modern security operations center. As threat actors weaponize automation to breach environments in minutes, the traditional security operations center is struggling to bridge a 45-minute \u201calert gap\u201d created by fragmented tools and legacy pipelines, according to\u00a0Josh Salmanson (pictured, far left), vice president of the Cyber Defensive Practice at Leidos Inc.<br \/>\n\u201cAdversaries are getting into an environment in under a minute now. They\u2019re doing everything they\u2019re going to do on the objective and getting back out,\u201d Salmanson said.\u00a0\u201cThe problem is the systems that we have in place today take a much longer time to alert the staff that there\u2019s an issue \u2026 That\u00a0could be 30 to 45 minutes. The adversary\u2019s already gone. Without making a change in the fundamental architecture for our defenders, we\u2019re not going to be able to keep up.\u201d<br \/>\nSalmanson spoke with theCUBE\u2019s Dave Vellante at Vast Forward 2026, during an exclusive broadcast on theCUBE, SiliconANGLE Media\u2019s livestreaming studio. They were joined by Robert Linger\u00a0(center left), vice president of the Information Advantage Practice at Leidos, and Randy Hayes\u00a0(center right), vice president of Vast Federal at Vast Data Inc. They discussed the transition from pilots to scalable production in artificial intelligence as well as the current state of cybersecurity data science.\u00a0(* Disclosure below.)<br \/>\nCybersecurity data science narrows the alert gap<br \/>\nThe modern threat landscape is defined by how quickly attackers can infiltrate and execute.\u00a0While cybersecurity metrics once measured breaches in hours, current research from firms such as CrowdStrike Holdings Inc. suggests that attackers\u00a0now move laterally across networks with a 29 minute average breakout time, compressing defenders\u2019 response windows significantly. This reality has rendered human-centric triage obsolete, as the volume of telemetry \u2014 often reaching 120 billion events per week for a single enterprise \u2014 far exceeds manual processing capabilities, according to Salmanson.<br \/>\n\u201cIf you can\u2019t use advanced data science, it\u2019s no longer a cyber problem,\u201d he said. \u201cIt\u2019s a data science problem.\u201d<br \/>\nBut the primary obstacle for defenders trying to scale cybersecurity data science remains tool bloat. Most large organizations manage 70 to 80 disparate security products, which creates a massive lag as data is filtered, parsed and moved between silos, according to Salmanson. By the time a ticket reaches a human analyst, the adversary has already exited the network.<br \/>\n\u201cWithout changing the fundamental architecture for defenders, we\u2019re not going to keep up,\u201d Salmanson said. \u201cCPU-based systems process events step by step. When you can parallelize analytics across GPUs and correlate telemetry in seconds instead of hours, you fundamentally change the defender\u2019s advantage.\u201d<br \/>\nBut faster infrastructure alone isn\u2019t enough; it also changes how security operations are structured. As enterprises move toward \u201cAI factories,\u201d the concept of agentic security \u2014 using AI agents to supervise other agents \u2014 is becoming a necessity. However, deploying autonomous agents within a federal or high-security environment requires a specialized framework to ensure every action remains within defined boundaries. To manage this, Leidos utilizes a \u201ccalibrated trust framework\u201d designed specifically for these demands, according to Linger.<br \/>\n\u201cAt Leidos, we have a framework we put together \u2014 called our calibrated trust framework \u2014 that is designed specifically to address that agentic flow,\u201d Linger explained. \u201cInitially, we had [a framework for] Trusted AI and that was really more about building trust in the systems that you had and the type of work that they were doing. But now as we start to push that out further, and we have agents, sometimes you have agents managing agents \u2026\u00a0At the end of the day, you have to have some sort of way to ensure that you have cost controls and auditability across those consumption-based capabilities.\u201d<br \/>\nThe framework is intended to ensure that as AI agents handle repetitive triage, their actions remain governed and auditable. It is designed to operate within high-performance, on-premises data environments such as those built on Vast\u2019s disaggregated storage architecture, which keeps telemetry centralized while enabling distributed analytics. Of course, autonomous threat response only works if every AI-initiated action is fully visible, controlled and auditable, according to Hayes.<br \/>\n\u201cWe have to be able to audit all of the actions. We can\u2019t just let these agents do whatever they want because it\u2019s going to end up being super problematic,\u201d Hayes explained. \u201cI think when you start looking at all of the governance that we\u2019ve also built into the platform, and then all of the experience that Leidos has to bring to bear, we can \u2026 build that end-to-end threat detection and dissemination and response in a way that\u2019s also governed and auditable so that we can show, \u2018Hey, this is every single action that was taken without a human in the loop.&#8217;\u201d<br \/>\nHere\u2019s the complete video interview, part of SiliconANGLE\u2019s and theCUBE\u2019s coverage of Vast Forward:<\/p>\n<p>(* Disclosure: TheCUBE is a media partner for Vast Forward. Sponsors of theCUBE\u2019s coverage, including presenting sponsor Solidigm, do not have editorial control over content on theCUBE or SiliconANGLE.)<br \/>\nPhoto: SiliconANGLE<\/p>\n<p>Support our mission to keep content open and free by engaging with theCUBE community. Join theCUBE\u2019s Alumni Trust Network, where technology leaders connect, share intelligence and create opportunities.<\/p>\n<p>15M+ viewers of theCUBE videos, powering conversations across AI, cloud, cybersecurity and more<br \/>\n11.4k+ theCUBE alumni \u2014 Connect with more than 11,400 tech and business leaders shaping the future through a unique trusted-based network.<\/p>\n<p>About SiliconANGLE Media<\/p>\n<p>SiliconANGLE Media is a recognized leader in digital media innovation, uniting breakthrough technology, strategic insights and real-time audience engagement. As the parent company of SiliconANGLE, theCUBE Network, theCUBE Research, CUBE365, theCUBE AI and theCUBE SuperStudios \u2014 with flagship locations in Silicon Valley and the New York Stock Exchange \u2014 SiliconANGLE Media operates at the intersection of media, technology and AI.<\/p>\n<p>Founded by tech visionaries John Furrier and Dave Vellante, SiliconANGLE Media has built a dynamic ecosystem of industry-leading digital media brands that reach 15+ million elite tech professionals. Our new proprietary theCUBE AI Video Cloud is breaking ground in audience interaction, leveraging theCUBEai.com neural network to help technology companies make data-driven decisions and stay at the forefront of industry conversations.<\/p>\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Why cybersecurity data science is the new security frontier https:\/\/siliconangle.com\/2026\/02\/26\/cybersecurity-data-science-new-security-frontier-vastforward\/ Publish Date: 2026-02-26 13:22:00 Source&#8230;<\/p>\n","protected":false},"author":1,"featured_media":190949,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/d15shllkswkct0.cloudfront.net\/wp-content\/blogs.dir\/1\/files\/2026\/02\/download-2-e1772128142521.png","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,20,30,24],"class_list":["post-190948","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-artificial-intelligence","tag-breach","tag-cybersecurity"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/190948"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=190948"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/190948\/revisions"}],"predecessor-version":[{"id":190950,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/190948\/revisions\/190950"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/190949"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=190948"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=190948"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=190948"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}