Two ways AI hype is worsening the cybersecurity skills crisis

AI was supposed to make security teams more efficient, but instead, it’s making their jobs harder. Security professionals are being pulled in two directions: they’re being expected to govern their organisation’s AI use while also figuring out how to integrate the technology into their own workflows, often without proper training. The result? Overstretched teams, mounting pressure, and an ever-widening skills gap.

Despite these growing pressures faced by cybersecurity teams, Richard Addiscott, vice president analyst at Gartner, points out how businesses are embracing AI at an unprecedented pace. “Our research shows 98% of organizations have already adopted or are planning to adopt generative AI or another form of AI. Only 1% plan not to adopt AI, and the other 1% is not sure,” he tells CSO. “But if you’re the head of the security organization, blocking AI probably won’t do you or your team any favors.”

This adoption, however, adds a new layer of responsibility for cybersecurity professionals, who must oversee AI governance while using AI themselves. “As a security function, where things like cost efficiency, operation productivity, operational continuity, and talent shortages already have an impact, it’s also entirely appropriate that those teams look at, ‘How can I use AI from a security function benefit, whether it’s improving operation efficiency, cost efficiency, or giving my team the opportunity to do more with the same level of resources,” Addiscott says.