Business Is Starting To Believe That AI Is The Best Defence

Businesses are increasing the pace of investment in AI systems to defend against the next generation of cyber-attacks, a study from the Capgemini Research Institute has found. 
 
Two thirds (69%) of organisations acknowledge that they will not be able to respond to critical threats without AI. With the number of end-user devices, networks, and user interfaces growing as a result of advances in the cloud, IoT, 5G and conversational interface technologies, organisations face an urgent need to continually ramp up and improve their cyber-security.
 
The “Reinventing Cybersecurity with Artificial Intelligence: the new frontier in digital security” study surveyed 850 senior IT executives from IT information security, cyber-security and IT operations across 10 countries and seven business sectors, and conducted in-depth interviews with industry experts, cyber-security startups and academics.
AI-enabled Cyber-Security is now an Imperative
 
Over half (56%) of executives say their cyber-security analysts are over-whelmed by the vast array of data points they need to monitor to detect and prevent intrusion.  
 
In addition, the type of cyber-attacks that require immediate intervention, or that cannot be remediated quickly enough by cyber analysts, have notably increased, including:  
 
• Cyberattacks affecting time-sensitive applications (42% saying they had gone up, by an average of 16%).
• Automated, machine-speed attacks that mutate at a pace that cannot be neutralised through traditional response systems (43% reported an increase, by an average of 15%).
 
Facing these new threats, a clear majority of companies (69%) believe they will not be able to respond to cyber-attacks without the use of AI, while 61% say they need AI to identify critical threats. One in five executives experienced a cyber-security breach in 2018, 20% of which cost their organisation over $50m.
 
Executives are accelerating AI investment in Cyber-Security and a clear majority of executives accept that AI is fundamental to the future of cyber-security:
 
• 64% said it lowers the cost of detecting breaches and responding to them – by an average of 12%.
• 74% said it enables a faster response time: reducing time taken to detect threats, remedy breaches and implement patches by 12%.
• 69% also said AI improves the accuracy of detecting breaches, and 60% said it increases the efficiency of cyber-security analysts, reducing the time they spend analysing false positives and improving productivity.
 
Accordingly, almost half (48%) said that budgets for AI in cyber-security will increase in FY2020 by nearly a third (29%). In terms of deployment, 73% are testing use cases for AI in cybersecurity. Only one in five organisations used AI pre-2019 but adoption is poised to skyrocket: almost two out of three (63%) organisations plan to deploy AI by 2020 to bolster their defenses.
 
“AI offers huge opportunities for cyber-security,” said Oliver Scherer, CISO of Europe’s leading consumer electronics retailer, MediaMarktSaturn Retail Group. “This is because you move from detection, manual reaction and remediation towards an automated remediation, which organisations would like to achieve in the next three or five years.”
 
There are Significant Barriers to Implementing AI 
The number-one challenge for implementing AI for cybersecurity is a lack of understanding of how to scale use cases from proof of concept to full-scale deployment. 69% of those surveyed admitted that they struggled in this area.
Additionally, half of surveyed organisations cited integration challenges with their current infrastructure, data systems, and application landscapes. 
 
Although the majority of executives say they know what they want to achieve from AI in cyber-security, only half (54%) have identified the data sets required to operationalise AI algorithms.
 
Geert van der Linden, Cybersecurity Business Lead at Capgemini Group told HelpNetSecurity “Organisations are facing an unparalleled volume and complexity of cyber threats and have woken up to the importance of AI as the first line of defense. 
 
“As cybersecurity analysts are over-whelmed, close to a quarter of them declaring they are not able to successfully investigate all identified incidents, it is critical for organisations to increase investment and focus on the business benefits that AI can bring in terms of bolstering their cybersecurity.” 
 
He adds, “Organisations must first look to address the underlying implementation challenges that are preventing AI from reaching its full potential for cyber-security. This means creating a roadmap to address key barriers and focusing on use cases that can be scaled most easily and deliver the best return. 
 
“Only by taking these steps can organisations equip themselves for the rapidly evolving threat of cyber-attacks. By doing so, they will save themselves money, and reduce the likelihood of a devastating data breach.”
 
Help Net Security
 
You Might Also Read:
 
AI Makes Cyber Attacks More Destructive:
 
AI: Is Your Business Ready?:
 
« Cannabis Buyers Are Uniquely Vulnerable To Cyber Attacks
Cyberwar: Covert Cyber Attack Campaign Is Underway »

Directory of Suppliers

DigitalStakeout

DigitalStakeout

A simple and cost-effective solution to monitor, investigate and analyze data from the web, social media and cyber sources to identify threats and make better security decisions.

Clayden Law

Clayden Law

Clayden Law are experts in information technology, data privacy and cybersecurity law.

Go Cyber

Go Cyber

Go Cyber is a new, highly innovative cyber security training app that uses action based learning to significantly improve the online behaviour of all employees in less than a month.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

WEBINAR: How to prioritize security controls for situational awareness in AWS

WEBINAR: How to prioritize security controls for situational awareness in AWS

Thursday 12 March 2020: Join AWS Marketplace and Sounil Yu to discover ways to strengthen your foundational controls and enhance your security posture in AWS.

Cyber Security Service Supplier Directory

Cyber Security Service Supplier Directory

Free Access: Cyber Security Service Supplier Directory listing 4,000+ specialist service providers.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Montash

Montash

Montash is an award winning, global technology recruitment business, specialising in the acquisitions of high-performing talent across a number of core disciplines including Information Security.

Luxembourg Institute of Science & Technology (LIST)

Luxembourg Institute of Science & Technology (LIST)

LIST is a mission-driven Research and Technology Organisation. Areas of research include IT and aspects of IT security.

BTWorks

BTWorks

BTWorks provides identity management and anti-phishing / smishing solutions for web and mobile apps.

PureVPN

PureVPN

PureVPN is a Virtual Private Network services provider offering secure encrypted access to the internet.

RiskRecon

RiskRecon

RiskRecon makes it easy to gain deep, risk contextualized insight into the cybersecurity risk performance of all of your third parties.