SYDNEY — Half of all enterprise cybersecurity incident response efforts will focus on AI-driven applications by 2028, according to Gartner. The company said security teams are increasingly being pulled toward risks tied to custom-built and rapidly deployed AI systems.
The prediction, released Tuesday at Gartner’s Security & Risk Management Summit in Sydney, said organizations are still deploying AI tools faster than they are building processes to secure them. Gartner also said more than half of enterprises will adopt dedicated AI security platforms by 2028 and warned that poor data quality and manual compliance work will create additional operational strain.
According to Gartner:
- AI Dominates Incident Response: By 2028, 50% of all enterprise cybersecurity incident response efforts will focus on issues involving custom-built AI-driven applications.
- The Cost of AI Data Debt: Through 2030, IT teams will spend 33% of their work time remediating “AI data debt”—securing the poorly managed or unstructured data that currently hinders AI adoption.
- Regulatory Risks: By 2027, 75% of regulated organizations using manual AI compliance processes risk facing fines exceeding 5% of their global annual revenue.
The forecast captures a broader realignment already underway in enterprise security. As companies embed AI into products and workflows, incident response is moving beyond servers, endpoints and email into model behavior, training data, identity abuse and application-layer misuse. For service providers and internal security teams alike, that means new playbooks, new tooling and a much larger role for AI governance in day-to-day defense.
If you want these turned into a clean Word-ready document, I can format them as a briefs package with consistent headlines and spacing.
