Ais Double-Edged Sword: Cybersecurity Experts Split On Benefits And Risks

The security benefits of generative artificial intelligence (AI) are a topic of debate among cybersecurity professionals. A recent survey by CrowdStrike found that only 39% of security researchers believe the rewards outweigh the risks of adopting generative AI.

Among the 1,022 security researchers and practitioners polled from various regions, cyber professionals are deeply concerned about the challenges associated with AI. While 64% have either purchased generative AI tools for work or are researching them, most remain cautious: 32% are still exploring the tools, while only 6% are actively using them.

The primary motivation for adopting generative AI is improving the ability to respond to and defend against cyberattacks. However, cybersecurity professionals prefer that AI be partnered with security expertise, rather than being used independently.

When evaluating the return on investment (ROI) of generative AI, cost optimization from platform consolidation and more efficient security tool use are top priorities. The second most important factor is reducing security incidents and minimizing time spent managing security tools. However, quantifying ROI is a major concern among respondents, with many struggling to measure its impact.

To mitigate risks associated with generative AI, organizations must implement safety and privacy controls as part of any purchase. This includes protecting sensitive data, complying with regulations, and mitigating risks such as data breaches or misuse. Without proper safeguards, AI tools can expose vulnerabilities, generate harmful outputs, or violate privacy laws, leading to financial, legal, and reputational damage.

Generative AI is useful for various purposes, including brainstorming, research, or analysis, with the understanding that its information often requires double-checking. Automated security platforms like Microsoft’s Security Copilot offer generative AI assistants that can pull data from disparate sources into one window in various formats, shortening the time it takes to research an incident.

In terms of protecting against cyber threats, generative AI can help with threat detection and analysis, automated incident response, phishing detection, enhanced security analytics, and synthetic data for training. However, to effectively leverage these benefits, organizations must prioritize safety and privacy controls when adopting generative AI.

Only 39% of security researchers believe the rewards outweigh the risks of adopting generative AI, highlighting the need for caution and careful consideration. Cyber professionals want generative AI paired with security expertise to ensure effective threat detection and response. Evaluating the ROI of generative AI is crucial, prioritizing cost optimization, reduced security incidents, and less time spent managing security tools.

Implementing safety and privacy controls is essential when adopting generative AI. Organizations must also prioritize cybersecurity expertise to effectively leverage these benefits. Leveraging generative AI assistants like Microsoft’s Security Copilot can streamline security tasks and improve incident response times.