How Will CISOs Be Impacted by the Proliferation of AI in Cybersecurity

How Will CISOs Be Impacted by the Proliferation of AI in Cybersecurity

The proliferation of AI has taken the world by storm, yet the impact on cybersecurity and the Chief Information Security Officers (“CISOs”) that manage it is mixed. Marching to an impressive sustained annual growth, which is expected to continue through the decade, AI can no longer be ignored for its potential benefits and risks.

As organizations embrace AI in a myriad of ways, including as a time-saver across departments in many areas of operations, a disturbingly low percentage of CISOs report relying on it in their day-to-day activities. This points to a disconnect between siloed departments and the primary parties responsible for ensuring the cybersecurity of the organization. Furthermore, there has been little, if any, training of employees in the appropriate and safe usage of generative AI in the workplace, a glaring shortcoming that can put an entire organization at risk.

Discipline and governing protocols around the use of AI are found to be lacking and CISOs have been slow in adapting to the excitement and embrace of emerging AI technologies and applications.

Furthermore, there has been little, if any, training of employees in the appropriate and safe usage of generative AI in the workplace, a glaring risk that can put an entire organization at risk.

CISOs are notoriously overworked and, in some cases, may potentially be held personally liable for errors or damages. With the rapidly evolving cyberthreat landscape, while challenging, it is absolutely critical that CISOs remain abreast of new developments in AI and address related security challenges accordingly. This will undoubtedly add to their workload and responsibilities as AI’s threats to security continue to mount.

While AI is being hailed for its obvious benefits, it is also providing opportunity for bad actors to leverage its power for nefarious purposes. Their tactics could, for example, lead to faster and more widespread phishing activities.

Through phishing, hackers can now bait potential victims with perfect accuracy, as opposed to previous attempts that were notoriously riddled with errors, typos, and inaccuracies. In addition, the use of deepfake AI technology is tripping up even the most seasoned of IT professionals, not to mention lower-level employees. Recently, a multinational suffered a $26 million loss when a deepfake video of their CFO conned staff into making what they thought were legitimate bank transfers. Another concerning trend that has emerged is the redirection of AI, causing the technology to malfunction, outputting incorrect content and information, and in many cases even damaging it. In effect, hackers can literally poison an AI system in a manner that will compromise an organization’s security and integrity. Without adequate awareness, training, governing protocols, and other security measures, more companies will remain at risk for these and other calamities.

In order to neutralize and counter threats of this nature as well as other developing risks, organizations must first understand the new AI landscape. For many non-tech administrators, the learning curve is significant and many report feeling intimidated or overwhelmed by the advent and propagation of AI. It is high time to bite the bullet and introduce broad education on generative AI–both its strengths and weaknesses–so that decision-makers can appropriately calculate their organizations’ risks and assign adequate budgets to governance, training, and technology that will more effectively secure their businesses. CISOs need their support, intellectually, managerially, and budgetarily in order to meet the threats arising from the rapid spread of AI on every level of operation. Without it, CISOs will impotently flounder in an ever-evolving sea of AI-powered advancement, unable to deflect attempts to destroy, malign, trick, and ultimately steal from their organizations. CISOs represent the front line of cybersecurity and it is imperative that they be robustly equipped with the education, tools, and comprehensive support necessary to keep their employers safe. Championing this support will take vision, courage, humility, and unwavering leadership. Time will tell who is up to the task.

Disclosure: The Futurum Group is a research and advisory firm that engages or has engaged in research, analysis, and advisory services with many technology companies, including those mentioned in this article. The author does not hold any equity positions with any company mentioned in this article.

Analysis and opinions expressed herein are specific to the analyst individually and data and other information that might have been provided for validation, not those of The Futurum Group as a whole.

Other Insights from The Futurum Group:

Index Engines: Ensuring the Integrity and Recoverability of Data – Six Five On the Road at RSAC

The Futurum Group Announces Shira Rubinoff as President, Cybersphere

What is Autonomous Endpoint Management? – Six Five On The Road

Author Information

Shira Rubinoff

Acclaimed cybersecurity researcher and advisor, Shira is a global keynote speaker and presenter, and expert media commentator. She joined The Futurum Group in February 2024 as President, Cybersphere.

SHARE:

Latest Insights:

HP’s EliteBook AI PC Lineup, Co-Engineered With Intel, Delivers Quantifiable Productivity Gains Through Application-Level Tuning and Local AI Performance
Olivier Blanchard, Research Director at Futurum shares insights on how Intel and HP’s AI PCs deliver productivity gains through local AI workloads, with up to 223% faster app performance and privacy-first compute for enterprise users.
Lenovo Expands Its Hybrid AI Advantage Portfolio With New Services, Hardware, and Integrated Platforms Targeting Scalable Enterprise AI Deployment
Nick Patience, VP and AI Practice Lead at Futurum shares insights on Lenovo’s Hybrid AI Advantage expansion, helping enterprises scale AI through new infrastructure, vertical-specific solutions, and employee enablement services.
Zoho Expands Deep-Tech Capabilities with New Campus, Robotics Acquisition, and Startup Studio in Kerala
Keith Kirkpatrick, Research Director at Futurum, shares insights on Zoho’s R&D expansion in Kerala, including its robotics acquisition, startup studio partnership, and rural innovation strategy to build deep-tech capabilities in India.

Latest Research:

In our latest Market Brief, From Data Chaos to AI Clarity: Activating AI Through High-Quality Enterprise Data, published in partnership with IBM, Futurum explores the core challenges enterprises face in deploying AI and presents a blueprint for overcoming them through smarter data strategies and tools.
In our latest market study, Scaling Smarter: How Google Cloud Marketplace Is Reshaping Partner Sales and GTM Strategy, Futurum uncovers the strategies and results from top-performing ISVs and channel partners leveraging the Google Cloud Marketplace as a transformational sales platform.
In our latest market brief, Unlocking the Future of Hybrid Cloud with Red Hat OpenShift Virtualization, developed in partnership with Red Hat, The Futurum Group outlines the evolving virtualization landscape, the economic and operational drivers behind infrastructure modernization, and the technical innovations powering OpenShift’s hybrid cloud strategy.

Book a Demo

Thank you, we received your request, a member of our team will be in contact with you.