GenAI in Cybersecurity: A Treat or Threat?

3 Ways Vendors Can Help Their Clients Maximize GenAI While Staying Secure

By: Christian Fam, Research Manager, IDC Asia/Pacific

Generative AI (GenAI) stands at the forefront of technological evolution, heralding a new era in cybersecurity.

It has both positive and negative effects: it improves security but also creates new challenges that need creative solutions. This blog post discusses how generative AI can improve and complicate cybersecurity, examining its effects on security measures.

Asia/Pacific is leading in adopting GenAI technologies compared to other regions. This aligns with its history of being enthusiastic and innovative with technology. The AP region supports innovation, startups, and research, creating a good environment for integrating GenAI technology. Different languages make GenAI more popular, showing the region's strong position in using advanced AI technologies worldwide.

In fact, according to a survey by IDC, 24.7% of organizations in Asia/Pacific are already investing in GenAI. They have a plan to spend money on training, buying GenAI software, and consulting services in the next 18 months. Yet only 13.3% of AP respondents feel well-prepared to support GenAI plans for security, risk, and compliance.

GenAI in Cybersecurity: A Treat or Threat?

This highlights the gap between the enthusiasm to adopt GenAI technologies and the readiness to address the security, risk, and compliance aspects intrinsic to such implementations in the AP region.

Building Secure and Trusted Organizations

Source: IDC GenAI ARC Survey, August 2023

Current Evaluation of Asia/Pacific Businesses
Using Generative AI

Q. What is your organization's current state of evaluating or using Generative AI (GenAI)?

29.2% Developing a list of potential use cases but are not yet investing in technology or model building.

27.3% Doing some initial testing of models and focused proofs of concept but don't have a set spending plan in place.

24.7% Investing significantly in GenAI with established spending plan for training, acquiring GenAI enhanced software, and consulting services in the next 18 months.

18.7% Not doing anything yet.

Businesses should remember that using GenAI can improve operations and save time. However, there are risks associated with it. These risks include data privacy, security, and ethical concerns. In this rapidly evolving landscape, security service providers become essential partners in helping enterprises navigate complexities and make informed decisions.

Here are some ways security vendors can help their clients mitigate cybersecurity risks brought by GenAI:

  • Data Protection Measures: Implement and enhance data protection measures to safeguard the data used by GenAI systems. This includes ensuring data privacy, securing data storage and transfer, and effectively managing access controls.
  • Secure AI Integration: Guide clients on securely integrating GenAI technologies into their existing IT ecosystems. This includes vetting third-party AI solutions for security risks and ensuring compatibility with existing security protocols.
  • Ongoing Evaluation: Encourage regular evaluations of the security posture concerning GenAI use, adapting to new threats and evolving technologies. Continuous improvement should be a part of the organization's cybersecurity strategy.

For more insightful guidance, subscribe to IDC Asia/Pacific Security Opportunities for direct access to IDC analysts and reports. Visit idc.com for helpful guidance on trust and resilience.

Christian Fam

Research Manager
IDC Asia/Pacific

You may also catch me at the Cybersecurity track at 'The Next Big Thing' conference in Singapore from 7 - 9 May 2024. I will be there with other IDC analysts and business leaders. See you!

Find Out More