Fifty percent of all enterprise cybersecurity incident response efforts will focus on incidents involving custom-built AI-driven applications by 2028, according to Gartner.

Gartner said AI is evolving quickly, but many custom-built AI applications are being deployed before they are fully tested. These systems are complex, dynamic and difficult to secure over time, and many security teams still lack defined processes for handling AI-related incidents.

The firm recommends that security leaders get involved early in custom-built AI application projects so that security controls, resources and timelines are planned from the outset.

Gartner also outlined several other cybersecurity predictions for the coming years.

By 2028, more than 50% of enterprises are expected to use AI security platforms to manage risks associated with third-party AI services and custom-built AI applications. These platforms are intended to address issues such as prompt injection, data misuse, visibility, policy enforcement and consistent security controls.

Through 2027, manual AI compliance processes are expected to expose 75% of regulated organizations to fines exceeding 5% of global revenue. Gartner said that despite regional differences, AI regulations are increasingly converging around the need for systematic risk management.

Through 2030, 33% of IT work is expected to be spent addressing AI data debt. Poorly secured and unstructured data remains a major barrier to AI adoption, prompting organizations to expand data loss prevention and strengthen data discovery, assessment and access controls.

By 2027, 30% of organizations are expected to require comprehensive sovereignty over their cloud security controls in response to geopolitical tensions and local regulations. This is likely to affect vendor selection and cloud security planning.

By 2028, 70% of CISOs are expected to use identity visibility and intelligence capabilities to reduce the identity and access management attack surface and lower the risk of credential compromise. Gartner said growing complexity in managing human and machine identities is creating visibility gaps and increasing the risk of misconfigurations.

Join the community of 2M+ industry professionals.

Subscribe to Newsletter to get latest insights & analysis in your inbox.

All about ETCISO industry right on your smartphone!