EY refers to the global organization, and may refer to one or more, of the member firms of Ernst & Young Global Limited, each of which is a separate legal entity. Ernst & Young Global Limited, a UK company limited by guarantee, does not provide services to clients.
Recent Searches
Learn how to get the most out of cybersecurity AI resources and investments
Ernst & Young LLP conducted a study of 500 security professionals to understand sentiment and best practices around AI in cybersecurity.
The promise of AI in cybersecurity brings with it both the opportunities of automation and productivity and the threat of supercharged capabilities. In both cases, the technology is turning out to be transformative. As urgent as the threat is, both the speed and the stakes with which AI is transforming the enterprise demand a holistic and responsible approach.
In December 2025, Ernst & Young LLP commissioned a study of 500 senior information security leaders to understand how they are quantifying the value of AI in security operations and defining their two-year budget and technology plans. It presents cyber leaders with important insights on how to get the most out of AI resources and investments.
1
Financial realities: budgets, costs, and investment trends
Senior security leaders are moving toward autonomous defenses, but the seriousness with which management is funding efforts has not kept pace. The good news is security professionals expect their budget to increase, despite economic pressure.
2
Return on investment: progress is slow, but optimism is high
We are beginning to see some early returns and efficiency gains as organizations adopt agentic AI in cybersecurity, but the numbers paint a picture of gains not yet realized. The next frontier will be to expand agentic AI to more core functions over time and shift employees’ efforts to more strategic tasks.
3
Human-in-the-loop cybersecurity: talent gaps and governance risks
As organizations accelerate their adoption of AI driven cybersecurity tools, the human element has never been more critical. Human-in-the-loop cybersecurity is not merely a risk control, it is the primary mechanism through which organizations establish trust in AI driven decisions.
4
Governance as the foundation for responsible, scalable AI cybersecurity
As organizations race to adopt AI driven cybersecurity capabilities, governance has emerged as the essential foundation for ensuring responsible, reliable, and scalable deployment. With most organizations already implementing or embedding governance frameworks into their core processes, governance is increasingly recognized as the key to converting AI’s potential into real business value.
Key takeaways and the way forward
The findings in this study illustrate a dual reality: AI has become indispensable for modern cyber defense, yet it simultaneously introduces new, complex risks that require urgent action. Senior Security leaders must act in four key areas to drive value creation with AI:
A special thanks to Martin Glowik, Esther Lee and David Cooper for their contributions to this report.