In recent years, huge strides have been made in the field of security automation. There are now numerous solutions that use automation for streamlining incident response and orchestrating across security products, allowing analysts to be more productive and effective.
Automation of processes that involve routine, repetitive work can help organizations detect, block or remediate cyber attacks. However, there is still a certain amount of confusion over the difference between automation and automatic. Although often used interchangeably, the terms are not synonymous. An automatic activity takes humans out of the loop and gives a machine complete control over the incident. Without human oversight, the possibility exists that the results could be incorrect, increasing the potential for the organization to suffer major damage.