Cybersecurity is in a constant state of change. Yesterday’s threats are receding into the background and being replaced by a wider range of challenges in a multi-threat environment.
As more organisations shift to multi-cloud environments, cloud security and the adoption of zero-trust architectures are more important than ever.
Fortunately, recent research shows that regional business leaders are keen to secure their enterprises against the latest digital risks. Specifically, they are becoming more aware of the potential of artificial intelligence (AI) to help protect critical systems against malicious actions from outside. In parallel, the same research also revealed organisations are experiencing a larger number of cyberattacks compared to this time in 2023 and that, increasingly, a proportion of these hostile acts are driven by generative AI.
We have reached an era when AI is both part of the threat landscape and an essential part of an effective defence strategy. AI has become a double-edged sword, as criminals have capitalised on AI’s capabilities to enhance their malicious activities, and companies deploy it to analyse and predict new threats.
In 2024, Palo Alto Networks commissioned a third-party research group to speak to 250 CEOs and senior managers from companies in the UAE about their plans for AI as part of their wider cybersecurity strategy.
A vast majority (98%) of those polled between 18-25 September this year, said they plan to increase investment in AI for cybersecurity. This cohort had experienced a significant increase in attacks: 63% reported a greater volume of active external threats compared to the year prior.
A further 14% of respondents felt that the level of threat remained the same as last year. Taken together, these figures point to businesses under pressure from malicious activity.
However, while there is consensus among business leaders about the seriousness of the threat, the research suggests that there is significant uncertainty about the most effective response. While C-suite leaders would like to deploy AI, uncertainty about how best to proceed is widespread. In particular, potential cost (45%), complex integration processes (45%), and potentially poor return on investment (41%) were all mentioned as reasons for postponing decisions on adopting AI-driven security solutions. Almost one third (30%) cited a lack of clear business benefits as a deterrent.
Nevertheless, those surveyed also expressed confidence that AI had a key role to play, with 90% claiming to have already implemented AI in some form as part of their corporate cybersecurity posture. More than half (52%) described such implementations as ‘extensive’ — while a further 38% made limited deployments.
Business leaders also cited potential concerns about the deployment of AI, including privacy issues (50%), potential misuse (48%) integration challenges and cost (46% and 45% respectively).
Asked “How, if at all, do you plan to keep your organisation’s cybersecurity strategies aligned with advancements in AI over the next 3-5 years?”, executives suggested they would invest in ongoing research and development, raise awareness and improve employee training, and partner with AI technology providers. Others showed a commitment to monitoring industry trends. Around half of those surveyed also keenly await new developments in the technology itself, keeping their firms, employees and customers safe in the months and years ahead.
Looking to the future, companies will need to consider both the business case and technical aspects of AI-driven cybersecurity. Do the pending threats seek to disrupt or defraud? Identifying their nature will be the key to developing a robust response and getting ahead of these malicious agents. To achieve this, corporate leadership will need to weigh up the potential pitfalls and advantages of embracing AI technologies.
As organisations face an ever-increasing number of AI-supported cyberthreats, automated response mechanisms will become more important for rapid incident containment. Ensuring a balance between automation and human involvement will be crucial to ensure effective decision-making and prevent unnecessary disruptions.
