The Cybersecurity Defenders Podcast #223 - Defender Fridays: Maintaining the human touch in security operations with Hayden Covington, SOC SecOps Lead at BHIS
Jun 20, 2025
Hayden Covington, SOC SecOps Lead at Black Hills Information Security, shares insights from his extensive background, including work with APTs for a Navy contractor. He dives into the vital balance of AI and human oversight in security operations, stressing the importance of maintaining a human touch to prevent errors. The conversation highlights how AI can enhance detection and streamline operations, while also discussing the challenges posed by rapidly evolving AI technologies. With an informal tone, they emphasize collaboration in tackling cybersecurity challenges.
AI Snips
Chapters
Transcript
Episode notes
AI Misinterpretation Example
- Hayden Covington shares an example where AI misinterpreted a command line containing a plaintext password.
- This illustrates AI's fallibility and the necessity for human oversight in security operations.
Safeguard Customer Data in AI
- Avoid inputting customer data into AI models not controlled or validated by your organization.
- When unclear, consult senior analysts for AI output validation to prevent errors.
Use AI for Analyst Augmentation
- Use AI to augment analysts by handling menial tasks and summarizing large alert datasets.
- Let analysts make final decisions with AI providing contextual insights and alert summaries.