AI apps to drive 50% of cyber incident response by 2028 - ET CISO

Cybercrime & Fraud 2 min read AI apps to drive 50% of cyber incident response by 2028 By 2028, half of cybersecurity incident response will target custom AI applications, which are complex and often deployed before full testing. Gartner advises early security leader involvement in AI projects. Furthermore, over 50% of enterprises will leverage AI security platforms to manage risks from third-party and custom AI services. E ETCISO Updated On Mar 25, 2026 at 09:24 AM IST Copy Link Share on WhatsApp Share on Linkedin Share on X Share on Telegram Share on Facebook Fifty percent of all enterprise cybersecurity incident response efforts will focus on incidents involving custom-built AI-driven applications by 2028, according to Gartner. Gartner said AI is evolving quickly, but many custom-built AI applications are being deployed before they are fully tested. These systems are complex, dynamic and difficult to secure over time, and many security teams still lack defined processes for handling AI-related incidents. The firm recommends that security leaders get involved early in custom-built AI application projects so that security controls, resources and timelines are planned from the outset. Gartner also outlined several other cybersecurity predictions for the coming years. By 2028, more than 50% of enterprises are expected to use AI security platforms to manage risks associated with third-party AI services and custom-built AI applications. These platforms are intended to address issues such as prompt injection, data misuse, visibility, policy enforcement and consistent security controls. Through 2027, manual AI compliance processes are expected to expose 75% of regulated organizations to fines exceeding 5% of global revenue. Gartner said that despite regional differences, AI regulations are increasingly converging around the need for systematic risk management. Through 2030, 33% of IT work is expected to be spent addressing AI data debt. Poorly secured and unstructured data remains a major barrier to AI adoption, prompting organizations to expand data loss prevention and strengthen data discovery, assessment and access controls. By 2027, 30% of organizations are expected to require comprehensive sovereignty over their cloud security controls in response to geopolitical tensions and local regulations. This is likely to affect vendor selection and cloud security planning. By 2028, 70% of CISOs are expected to use identity visibility and intelligence capabilities to reduce the identity and access management attack surface and lower the risk of credential compromise. Gartner said growing complexity in managing human and machine identities is creating visibility gaps and increasing the risk of misconfigurations. By , ETCISO Published On Mar 25, 2026 at 09:17 AM IST See more on: AI applications in cybersecurity, cybersecurity incident response, Gartner AI predictions 2028, custom-built AI applications, AI security platforms Telegram Facebook Copy Link Comments What are your thoughts? Comment Now Read Comment (1)