Cyber attackers & defenders get a boost from generative AI, IT Security News, ET CISO
Generative AI is now at the centre of a highstakes arms race in the digital realm, forcing both cybersecurity defenders and attackers to adapt rapidly.
“As organisations transition from discrete GenAI pilots to enterprise-wide implementations, security risks are increasing given the scale and complexity of adoption,” says Prathima Kasagar, cyber protect lead at Accenture’s Advanced Technology Centres in India. This rapid adoption has created a doubleedged sword, offering powerful new tools for cybersecurity professionals while simultaneously arming potential attackers with sophisticated capabilities.
The World Economic Forum’s Global Cybersecurity Outlook Report 2024 paints a sobering picture: 56% of executives believe attackers will maintain an advantage over defenders in the next two years.
Balaji Rao, area VP for India & Saarc at Commvault, cautions against viewing AI as a panacea. “The current AI-centric discussions often overlook a fundamental truth: Technological tools, regardless of sophistication, serve as enablers rather than complete solutions,” he says. Instead, Rao stresses on the continued im portance of human expertise in conjunction with AI.
This sentiment is echoed by Samir Kumar Mishra, director of security business at Cisco India & Saarc. “While GenAI holds promise for both attackers and defenders, in the short term, it might look like threat actors may gain an upper hand,” Mishra notes. However, he remains optimistic about AI’s potential to level the playing field, citing its ability to improve detection and response speeds.
The integration of AI into cybersecurity strategies is not just a technological shift; it’s a fundamental reimagining of how organisations approach digital defence. Sudhakar Singh, chief AI security officer at SAP, outlines a two-pronged strategy: “Security for AI” and “AI for security.” The former focuses on safeguarding AI models, while the latter leverages AI to enhance existing security measures.
Skillsets must evolve
As the threat landscape evolves, so too must the skillsets of cybersecurity professionals. “Security professionals will need to address AI’s ethical concerns – ensuring privacy, preventing bias, and maintaining transparency – while acquiring new skills in machine learning, deep learning, and NLP,” Mishra advises.
Rao says cybersecurity experts must master AI-driven tools for threat detection, incident response automation, and predictive analytics while maintaining proficiency in programming languages like Python and JavaScript, cloud security, network architecture, and data privacy.
The rapid pace of change has also highlighted a critical shortage in the cybersecurity workforce. Cisco’s Cybersecurity Readiness Index indicates that 91% of companies in India report shortages in cybersecurity roles. Meaning young techies looking for a lucrative career should absolutely consider cybersecurity roles.