Christos Onoufriou: How AI and Autonomous SOC Concepts Are Shaping the Future of Cybersecurity

Manal Saleh

During Black Hat, we spoke with Christos Onoufriou, CEO of Odyssey, who shared his shared his vision for how autonomous SOCs, private AI models, and emerging cyber threats are reshaping the cybersecurity landscape. His insights highlight not only where the industry stands today but also the direction it is rapidly moving toward.

For Onoufriou, this conversation is part of a much longer journey of evolution, one that reflects how far AI-driven cybersecurity has come and how much potential still lies ahead.

From concept to reality: the path toward an autonomous SOC

When discussing the idea of an autonomous SOC, Onoufriou is clear that the industry is still in the early stages of understanding what true autonomy might look like.

“Nobody really knows what an autonomous SOC is since it is still a concept,” he explained. “It is the idea that technology and platforms can react and take action by themselves. This is fully related to AI.”

Today, AI is not capable of making all decisions, whether legally or technologically. Instead, it plays a supportive role, automating repetitive tasks, structuring and enriching data and enabling human analysts to focus on the critical elements of threat identification and response.

“With the implementation of GenAI, AI will take over some tasks, still with human oversight,” he said. “As AI models become more intelligent, we may reach an autonomous like environment, but we still need humans for oversight and accountability. Otherwise, who is responsible when AI makes a decision?”

For now, the fully autonomous SOC remains on the horizon.

“We do not expect a truly autonomous SOC in the next five to ten years,” he added. “AI is improving operations and speed, but full autonomy is still far off.”

Building trust through Private AI Fabric

Odyssey’s approach to AI is grounded in one core principle: trust and data protection. According to Onoufriou, this trust extends not only to the platform’s capabilities but also to ensuring complete protection of customer data, especially in highly regulated markets like Saudi Arabia.

“The foundation of our work is trust, not just trust in our platform, but trust that customers’ data stays protected,” he said.

He highlighted a critical challenge in the industry: most AI engines today rely on cloud-based models, where queries and sensitive data travel across the internet, creating potential exposure risks.-“For us, this is unacceptable,” Onoufriou stated.

To address this, Odyssey built its own Private AI Fabric using in house GPUs and models, ensuring that customer data stays entirely within ClearSkies.

“This aligns with the requirements of NCA, SAMA and privacy laws in Saudi Arabia and other countries,” he said. “Because SAMA regulates the financial sector including cybersecurity, we must comply with their frameworks, and our private AI helps ensure full compliance.”

Staying ahead of attackers in the age of AI

Onoufriou acknowledges that AI is a double-edged sword in cybersecurity.“Like all technologies, AI is used by both defenders and attackers,” he noted.

Attackers now deploy AI to create faster, more adaptable attacks capable of shifting tactics once inside an environment. This makes rapid detection more essential than ever.

In response, Odyssey uses AI to accelerate threat recognition and strengthen defensive strategies.“AI helps us detect attacks quicker, analyze trends faster, take action earlier, improve response time and increase customer protection and resilience,” he said.

Ultimately, it all comes down to timing. “One of the most important elements in any attack is time. If attackers have enough time, they will succeed.”

A partner driven growth model with Saudi Arabia at its core

For Odyssey, expansion is not just about technology but about building a resilient cybersecurity ecosystem with local partners. Onoufriou emphasized the importance of regional partners, MSPs, integrators and technology collaborators in delivering local impact across every market the company enters.

“Partners are at the center of our growth,” he explained. “We bring the technology; they bring market access and local expertise. We train partners and grow together.”

This model has proven successful, particularly in Saudi Arabia, which continues to be a central market for Odyssey’s long-term strategy.

“We arrived six years ago with one colleague. Today we have nearly twenty employees, a strong mix of Saudi nationals and residents. We have around seventy customers and thirty partners in the Kingdom,” he said.

With the Kingdom’s rapid digital transformation and expanding cybersecurity requirements, Onoufriou sees no slowdown ahead. “Saudi Arabia is a growing market with strong digital transformation initiatives, and we are here to stay and expand further.”