Ai set to outpace security teams

“Inside the Mind of a CISO” report uncovers CISO perceptions on AI threats, ethical hacking, and the expertise needed to address the cyber skills gap.

  • Thursday, 27th June 2024 Posted 1 year ago in by Phil Alsop

Bugcrowd has released its “Inside the Mind of a CISO” report, which surveyed hundreds of security leaders around the globe to uncover their perception on AI threats, their top priorities and evolving roles, and common myths directed towards the CISO.

Money & Hiring

Among the findings, 1 in 3 respondents (33%) believed that at least half of companies are willing to sacrifice their customers’ long-term privacy or security to save money. This is explained in part by the fact that 40% believed that less than 1 in 3 companies truly understood their risk of being breached. Speaking of money, nearly 9 in 10 (87%) reported that they were currently hiring security staff and 56% stated that their security team was currently understaffed. And despite some common misconceptions around not needing a college degree, respondents reported that only 6% of cybersecurity leaders don’t have a college degree and over 80% have a degree specifically in cybersecurity.

AI

Despite plans to hire, 70% reported that they planned to reduce the security team headcount within the next 5 years due to the adoption of AI technologies. Over 90% believe that AI already performs better than security professionals, or at least will in the near future. AI isn’t only seen as a benefit however, over half (58%) believe that the risks of AI are worse than its potential benefits.

CISO Perspectives on Ethical Hacking

Due to concerns around the malicious use of AI by attackers, 70% of security leaders turned towards using crowdsourced security for testing their AI defenses. In fact, more than 7 in 10 (73%) of security leaders view ethical hacking in a favorable light and 75% of them actually have experience with it themselves. With modern day threats being more evasive and adaptive than they’ve ever been – 89% believe there are more threats and they are more serious – it’s imperative that crowdsourced security be the center of an organization’s cybersecurity strategy.

Nick-M

"The CISO role is evolving. Given the current risk landscape and the need to prioritize security over resilience, the CISO has more responsibility than ever before,” Nick McKenzie, CISO at Bugcrowd. “Bridging the gap between CISOs and the collective ingenuity of hackers is key to shielding organizations from the increasing onslaught of AI threats and attacks."

As the cybersecurity landscape continues to evolve, professionals and organizations must remain ready to adapt to the latest trends and emerging technologies such as AI and the implementation of crowdsourced cybersecurity. The Bugcrowd Platform connects organizations with trusted hackers to proactively defend their assets against sophisticated threat actors. In this way, CISOs can unleash the collective ingenuity of the hacking community to better uncover and mitigate risks across applications, systems, and infrastructure.

Vanta has released its Trust Maturity Report, offering a data-driven look at how organizations are evolving their security programs in an...

OT cybersecurity risk rises up the leadership ranks

Posted 21 hours ago by Phil Alsop
More than half (52%) of organizations report that the CISO/CSO is responsible for OT, up from 16% in 2022, while 95% of organizations report that the...

Industry gap in operationalising threat intelligence

Posted 22 hours ago by Phil Alsop
Cyware has released new research revealing that a majority see the importance of having a Threat Intelligence Program and have started a Program.
DigiCert has released new findings from its Trust Pulse Survey highlighting the business impact of mismanaged digital certificates. Nearly half of...
Contents Table: Make Payments Painless Spot the Symptoms of ‘Growth Gone Wrong’ Early Don’t Just Grow: Optimise Build a Stack That...
Trend Micro has published research revealing that while organisations are embracing artificial intelligence to strengthen cyber defences, many are...
Over 40% of agentic AI projects will be cancelled by the end of 2027, due to escalating costs, unclear business value or inadequate risk controls,...
The majority (83%) of IT and business professionals in Europe believe employees in their organisation are using AI.