AI's role in cybersecurity: balancing power & risks
A recent report by Swimlane indicates that the swift adoption of AI technologies has exceeded many organisations' ability to safeguard data and enforce security measures effectively.
The report titled "Reality Check: Is AI Living Up to Its Cybersecurity Promises?" reveals significant findings from a survey involving 500 cybersecurity decision-makers across the United States and the United Kingdom. The research highlights the increased role of AI in organisational operations and the associated challenges.
Cody Cornell, Co-founder and Chief Strategy Officer of Swimlane, remarked, "There's no doubt that AI is reshaping cybersecurity as we know it, and its impact reaches far beyond the digital sphere. The fact that 74% of respondents view AI-generated misinformation as a significant threat to the U.S., particularly with the 2024 elections approaching, underscores the complex challenges ahead.
"While AI offers tremendous benefits in improving security and efficiency, it's crucial that we approach its use responsibly, balancing innovation with the potential risks to both organisations and society."
A central concern is that 74% of cybersecurity leaders acknowledge the risk of sensitive data being input into public AI models, despite many having strict protocols. The report suggests that while 70% of organisations maintain these protocols, the actual practices often diverge.
On the governance of AI, only 28% of the respondents believe that the government should primarily be responsible for setting and enforcing AI guidelines. Nearly half (46%) assert that the companies that develop AI should bear the main responsibility when AI causes harm.
The report also addresses AI's burgeoning presence in the market with 76% of respondents feeling inundated by AI-centric messages. A substantial 55% report fatigue from the constant focus on AI.
Regarding AI skillsets, a striking 86% of organisations state that experience with AI and machine learning technologies significantly influences their hiring decisions.
From a budgetary angle, the report outlines a positive impact of AI on efficiency, with 89% of organisations noting improvements in productivity through the use of generative AI and large language models. Correspondingly, 33% of organisations are planning to allocate over 30% of their 2025 cybersecurity budgets to AI-powered or enhanced solutions.
Michael Lyborg, CISO at Swimlane, emphasised the necessity of AI in cybersecurity operations stating, "Effective use of AI is no longer a luxury—it's a necessity. By automating routine tasks and boosting threat detection, AI enables cybersecurity professionals to tackle more complex challenges head-on.
"Organisations that embrace AI strengthen their defences and regain time for proactive threat hunting. As we navigate these turbulent waters, it's vital that we implement AI thoughtfully to enhance security and uphold public trust."
The findings of the study shed light on the delicate balance organisations must maintain between reaping AI's benefits and mitigating its risks, as well as the broader implications for data security and governance.