86% of CIOs report growing pressure within their organisation to ensure ROI from AI.

94% of CIOs are actively seeking opportunities to incorporate AI into their business, compared to 89% last year.

86% of security teams today utilize some type of AI within their security tool stack

Third-party and supply chain risk was a big security pain point (42%)

57% of security teams find it difficult to enforce policies on training data usage.

Approximately 19% say they primarily apply AI to security through their own internal data science work

71% of Security Managers/Directors focus on AI governance.

1 in 5 respondents reporting that 75% or more of their tool stack promotes AI capabilities

Endpoint security was a current application of AI in 52% of security tech stacks

Approximately 1 in 4 organizations said they’re concerned about how AI use in the enterprise will make them more attackable (AI and generative AI concerns)

Only 18% use AI to bolster vulnerability remediation workflows

The majority of organizations (55%) say that they’ve enabled AI in under half the tools in their environments that have it available

72% of CISOs express the most concern about discovering data used in AI initiatives.

Basic vulnerability scanning was a current application of AI in 47% of security tech stacks

Incident response was the second security function where AI will provide the most value in the next 3 years, cited by 59% of respondents

54% of organizations added AI training data governance duties in the past year.

Difficulty in tuning, training, and supervising AI was an obstacle to the effective use of AI for 39% of respondents

77% of security teams cannot ensure AI systems respect proper data access rights.

Antivirus/anti-malware was a current application of AI in 40% of security tech stacks

Approximately 56% of respondents reported that at least half of their security vendors tout their AI capabilities