Enterprises are all in on AI for security but budgets aren’t keeping pace
Recent EY research shows security practitioners see both sides of the AI coin – as foundational to their security strategies but also as a dangerous threat.
96% of the security leaders surveyed see AI as a core element in their cybersecurity strategy that they are already deploying. Credit: MUNGKHOOD STUDIO via Shutterstock.com.
Enterprises facing a challenging cybersecurity threat environment recognise AI is coming into play in equal parts as an important element in their defences, as a dangerous weapon their adversaries are all too eager to wield. Global professional services company EY surveyed 500 security decision-makers at companies with annual revenues of at least $500m to gain their perspective on the role AI will play in their security strategies now and going forward. 96% of the security leaders surveyed see AI as a core element in their cybersecurity strategy that they are already deploying. However, that same number perceives AI-driven attacks as serious threats to their organisation.
Unfortunately, most – 85% – who are already using AI as part of their security arsenals think their budgets are underfunded with respect to the severity of the looming threat AI-powered attacks pose. Just 20% said their cybersecurity governance framework is sufficient and well-integrated into organisational culture.
That said, it is still relatively early days in terms of embedding AI capabilities, and many anticipate their organisations will make appropriate investments. The number of organisations expecting 25% of their cybersecurity budgets to be dedicated to AI solutions will increase from 9% now to 48% in the next two years. Two-thirds currently use AI as part of their cybersecurity efforts today and project they will spend at least $5m in two years; one-third expect to allocate $10m.
46% saw a return of under $1mn from AI-driven solutions now, while 12% said they didn’t see any return or aren’t quantifying cost savings. Areas where organisations expect AI to play a major role include Advanced Persistent Threat (APT) detection, identity and access management (IAM), third-party risk management, real-time fraud detection, data privacy and compliance, and deepfake impersonation defence.
Though embedding AI into their security defences may not produce significant cost reductions, security leaders predict the technology will lead to progress in key metrics such as mean time to recovery (MTTR), mean time to detect (MTTD), and significant decreases in false positives.
close
Sign up to the newsletter: In Brief
Sign in to highlight and annotate this article
Conversation starters
Daily AI Digest
Get the top 5 AI stories delivered to your inbox every morning.
More about
research
Syntaqlite Playground
Tool: Syntaqlite Playground Lalit Maganti's syntaqlite is currently being discussed on Hacker News thanks to Eight years of wanting, three months of building with AI , a deep dive into exactly how it was built. This inspired me to revisit a research project I ran when Lalit first released it a couple of weeks ago, where I tried it out and then compiled it to a WebAssembly wheel so it could run in Pyodide in a browser (the library itself uses C and Rust). This new playground loads up the Python library and provides a UI for trying out its different features: formating, parsing into an AST, validating, and tokenizing SQLite SQL queries. Tags: sql , ai-assisted-programming , sqlite , tools , agentic-engineering
Nonprofit Research Groups Disturbed to Learn That OpenAI Has Secretly Been Funding Their Work
"I don't want OpenAI to write their own rules for how they interact with children." The post Nonprofit Research Groups Disturbed to Learn That OpenAI Has Secretly Been Funding Their Work appeared first on Futurism .
Knowledge Map
Connected Articles — Knowledge Graph
This article is connected to other articles through shared AI topics and tags.
More in AI Tools
Unsweetened Whipped Cream
I'm a huge fan of whipped cream. It's rich, smooth, and fluffy, which makes it a great contrast to a wide range of textures common in baked goods. And it's usually better without adding sugar. Desserts are usually too sweet. I want them to have enough sugar that they feel like a dessert, but it's common to have way more than that. Some of this is functional: in most cakes the sugar performs a specific role in the structure, where if you cut the sugar the texture will be much worse. This means that the cake layers will often be sweeter than I want for the average mouthful, and adding a layer of unsweetened whipped cream brings this down into the range that is ideal. It's good in helping hit a target level of sweetness without compromising texture. (This is a flourless chocolate cake with pr
Discussion
Sign in to join the discussion
No comments yet — be the first to share your thoughts!