How can we build intelligent resilience against cyber threats in the age of AI

Artificial intelligence (AI) has evolved beyond its origins as a productivity booster and is now fundamentally reshaping the cybersecurity battlefield.

The number of AI-related cyberattacks is surging across industries. Autonomous AI systems now execute attacks with a speed and precision that surpass traditional, human-led defenses.

In 2023, security researchers documented the use of generative AI (GenAI) to craft highly convincing, personalized phishing emails in seconds. These emails targeted thousands of employees simultaneously, leading to a 40% increase in successful phishing incidents.

Such campaigns adapt in real time, exploiting weaknesses faster than legacy security models can respond.

Imagine an AI system that continuously scans a corporate network for vulnerabilities. Upon detection, it automatically deploys customized malware within minutes, outpacing any manual intervention.

This level of automation and adaptability illustrates how AI-enabled attacks operate. It emphasizes the urgency for organizations to rethink their defensive strategies.

Resilience requires more than incremental improvements. Organizations must deploy security strategies that anticipate threats, neutralize risks before they materialize and evolve as quickly as adversaries.

How AI Has Changed the Cyber Landscape

GenAI and agent-based AI have fundamentally reshaped the cyber threat landscape.

The World Economic Forum’s Global Cybersecurity Outlook 2026 reported that 87% of surveyed organizations believe AI-related vulnerabilities have increased.

CrowdStrike’s 2025 State of Ransomware Survey found that nearly half of organizations identify AI-automated attack chains as the most significant ransomware threat.

In the same survey, 85% of security professionals stated that traditional detection approaches are becoming obsolete against AI-enhanced attacks.

Another growing concern is shadow AI — unauthorized employee use of AI tools — which significantly expands the attack surface.

According to a 2025 Gartner report, analysts predict that by the end of the decade, a substantial proportion of security breaches will be directly linked to misuse of autonomous AI agents.

These developments signal a major shift in cybersecurity strategy. Striving for perfect prevention is no longer realistic.

Organizations must accept that disruption is constant. Resilience — the ability to absorb, adapt and quickly recover from incidents — is now paramount.

At the same time, regulatory scrutiny is increasing. AI governance compliance is becoming an audit necessity.

Global geopolitical tensions and complex supply chains further amplify vulnerabilities.

However, the same AI technologies that empower attackers can also strengthen defenders. Organizations can move from reactive defense to predictive, proactive strategies.

3 Horizons of AI-Led Cybersecurity Transformation

A phased, horizon-based approach helps organizations manage cybersecurity transformation step by step.

Organizations in early AI adoption stages can begin by automating compliance checks or leveraging AI-powered identity management solutions in cloud platforms.

1. Modernize and Secure AI Foundations

The first step is securing and modernizing the core infrastructure that supports AI.

Security-by-design must be built into every layer of the AI stack, including data, models, applications and identity systems.

Organizations must address risks such as shadow AI, prompt injection and data poisoning. Governance structures must align with emerging regulations.

Legacy platforms should be modernized or replaced with AI-ready solutions offering predictive threat modeling and automated remediation.

The Accenture State of Cyber Resilience report found that 77% of organizations lack foundational data and AI security practices.

One multinational oil and gas company successfully moved its security monitoring tools to the cloud, enabling greater scalability and AI-driven automation.

Even smaller organizations can begin by identifying their AI agents and clearly defining permissions.

Key priorities include:

• Integrating AI security into governance and compliance frameworks.
• Conducting risk assessments across all AI layers.
• Transitioning legacy tools to AI-ready platforms.
• Designing secure digital cores for GenAI from the outset.

Autonomous agents are changing the rules of cybersecurity, and inaction carries real risk.

2. Leverage Ecosystem Capabilities and Drive Sustained Change

A strong foundation enables faster adoption of advanced AI capabilities.

AI can automate threat detection, reduce false positives and streamline security operations.

A major agricultural and chemicals company improved incident resolution using an AI chat interface, real-time response tools and data-driven insights.

However, technology alone is not enough. Structured change management and workforce training are essential.

High-impact use cases include:

• AI-driven threat detection and phishing response.
• Reducing alert fatigue in security operations.
• Automated vulnerability scanning and prioritization.
• AI-assisted cyber intelligence reporting.

Organizations with smaller budgets can still progress by defining clear boundaries for AI actions and maintaining human oversight.

3. Reinvent Cybersecurity

The final horizon integrates AI agents as active defenders within security operations.

These autonomous systems augment human teams and enable proactive threat management at scale.

A national utilities company has already established an AI centre of excellence to accelerate agentic AI deployment.

Agent-first workflows include:

• Intelligent identity management with automated access updates.
• AI-driven attack surface monitoring.
• Automated contract security reviews.
• Agent-led penetration testing simulations.

This shift transforms cybersecurity from reactive defense to proactive threat anticipation.

Preparing for the Next Cyber Era

Autonomous agents are redefining cybersecurity, and inaction carries significant risk.

Yet these same technologies can strengthen defenses when deployed responsibly.

Organizations of all sizes can begin with targeted investments in foundational AI security tools and workforce training.

Will your organization build the resilience to stay ahead of tomorrow’s threats — or allow the future to outpace it? The time to decide is now.