Gartner Predicts AI Applications Will Dominate Incident Response Efforts in Cybersecurity by 2028
According to Gartner, Inc., a leading business and technology insights company, it is projected that by 2028, fifty percent of all enterprise cybersecurity incident response efforts will be focused on incidents involving custom-built AI-driven applications.
The Evolving Landscape of AI in Cybersecurity
“AI is evolving quickly, yet many tools – especially custom-built AI applications – are being deployed before they’re fully tested,” noted a VP Analyst at Gartner. He emphasized that these systems are complex, dynamic, and challenging to secure over time. Currently, most security teams lack clear processes for handling AI-related incidents, which can result in prolonged resolution times and increased efforts.
Recommendations for Security Leaders
Gartner advises security leaders to engage early in the development of custom-built AI applications. This proactive involvement ensures that:
- There is sufficient time allocated for security measures.
- Resources are planned effectively.
- Expectations are managed regarding security controls.
Key Predictions for Cybersecurity Strategies
Gartner outlines several crucial predictions that cybersecurity leaders should consider integrating into their strategies over the next two years:
1. Widespread Adoption of AI Security Platforms
By 2028, more than 50% of enterprises are expected to utilize AI security platforms to secure third-party AI services and protect custom-built applications. These platforms offer a unified approach to managing new risks related to rapid AI adoption, including prompt injection and data misuse.
2. Manual Compliance Risks
Through 2027, 75% of regulated organizations may face fines exceeding 5% of their global revenue due to manual AI compliance processes. The convergence of global AI regulations highlights the need for a systematic risk management approach.
3. Remediation of AI Data Debt
By 2030, 33% of IT work will be dedicated to remediating AI data debt. Organizations currently struggle with poorly secured and unstructured data, which hampers AI adoption. Cybersecurity leaders should enhance data loss prevention measures to monitor data flows triggered by AI access requests.
4. Cloud Security Sovereignty
By 2027, 30% of organizations will need comprehensive sovereignty over their cloud security controls. Geopolitical tensions and local regulations necessitate that organizations prioritize sovereignty as part of their cyber resilience strategies.
5. Identity Management Enhancements
By 2028, 70% of Chief Information Security Officers (CISOs) will leverage identity visibility and intelligence capabilities to reduce the risks associated with credential compromise. As identity becomes a primary attack surface, integrating AI-powered identity platforms is crucial for improving detection and remediation.
Conclusion
As AI continues to evolve, its integration into cybersecurity strategies is not just beneficial but essential. Organizations must adapt to these changes swiftly and effectively to manage the complexities introduced by AI technologies.
Gartner stands as the authoritative source on AI, providing essential insights for C-level executives and technology providers striving to implement effective AI strategies.
