The AI landscape in cybersecurity #AI


The AI landscape in cybersecurity | EY Japan


























Learn how to get the most out of cybersecurity AI resources and investments


Ernst & Young LLP conducted a study of 500 security professionals to understand sentiment and best practices around AI in cybersecurity.

The promise of AI in cybersecurity brings with it both the opportunities of automation and productivity and the threat of supercharged capabilities. In both cases, the technology is turning out to be transformative. As urgent as the threat is, both the speed and the stakes with which AI is transforming the enterprise demand a holistic and responsible approach. 

In December 2025, Ernst & Young LLP commissioned a study of 500 senior information security leaders to understand how they are quantifying the value of AI in security operations and defining their two-year budget and technology plans. It presents cyber leaders with important insights on how to get the most out of AI resources and investments.



1. Financial realities: budgets, costs, and investment trends

 

2. Return on investment; progress is slow, but optimism is high

 

3. Human-in-the-loop cybersecurity: talent gaps and governance risks

 

4. Governance as the foundation for responsible, scalable Al cybersecurity


1

Financial realities: budgets, costs, and investment trends

Senior security leaders are moving toward autonomous defenses, but the seriousness with which management is funding efforts has not kept pace. The good news is security professionals expect their budget to increase, despite economic pressure.



Budgets are not sufficient to meet threats


85% of senior security leaders who are using AI in cybersecurity state their current cybersecurity budget is insufficient to meet AI-enabled threats.

 

Budget for AI cyber solutions expected to rise within two years


85% of senior security leaders who are using AI in cybersecurity state their current cybersecurity budget is insufficient to meet AI-enabled threats.

 

Investment momentum: spending more to defend more


Two-thirds (67%) of senior security leaders using AI in cybersecurity expect to spend at least $5m two years out, and a third (34%) expect to spend at least $10m on the same time horizon.


Asian businesswoman standing against contemporary corporate skyscrapers

2

Return on investment: progress is slow, but optimism is high

We are beginning to see some early returns and efficiency gains as organizations adopt agentic AI in cybersecurity, but the numbers paint a picture of gains not yet realized. The next frontier will be to expand agentic AI to more core functions over time and shift employees’ efforts to more strategic tasks.




man thinking while walking in the city

3

Human-in-the-loop cybersecurity: talent gaps and governance risks

As organizations accelerate their adoption of AI driven cybersecurity tools, the human element has never been more critical. Human-in-the-loop cybersecurity is not merely a risk control, it is the primary mechanism through which organizations establish trust in AI driven decisions.



Human oversight remains essential


85% of senior security leaders say their organization maintains mandatory human-in-the loop requirements for all critical security decisions.

 

Talent shortages become critical


90% of organizations report difficulty recruiting and retaining cybersecurity professionals with expertise in AI-driven solutions/defenses.

89% identify cybersecurity staff that is unskilled/untrained on AI-enabled cyberattacks as their organization’s greatest liability.

 

AI drives efficiencies and more strategic work


97% of senior security leaders who are using AI in cybersecurity say their organization’s use of AI-driven cybersecurity solutions has increased analyst operational efficiency.

97% of senior security leaders who are using AI in cybersecurity report that it frees analysts to focus on higher-value, strategic tasks.


Business black woman posing confidently in the city

4

Governance as the foundation for responsible, scalable AI cybersecurity

As organizations race to adopt AI driven cybersecurity capabilities, governance has emerged as the essential foundation for ensuring responsible, reliable, and scalable deployment. With most organizations already implementing or embedding governance frameworks into their core processes, governance is increasingly recognized as the key to converting AI’s potential into real business value.




Key takeaways and the way forward

The findings in this study illustrate a dual reality: AI has become indispensable for modern cyber defense, yet it simultaneously introduces new, complex risks that require urgent action. Senior Security leaders must act in four key areas to drive value creation with AI:



1. Budget realities demand a reprioritization toward Al driven cybersecurity since cyberthreats are advancing faster than most organizations’ funding.

 

2. Success requires deeper integration of agentic Al into core security functions to yield meaningful return on investment.

 

3. Human-in-the-loop oversight of Al and skills development are non-negotiable with Al systems taking on greater autonomy. Skilled human oversight becomes more critical, not less.

 

4. Governance frameworks provide guardrails that ensure Al systems are secure and form the foundation for trusted, scalable Al cybersecurity.




Click Here For The Original Source.

——————————————————–

..........

.

.

National Cyber Security

FREE
VIEW