AI (Artificial Intelligence) is dominating conversations in boardrooms, on the street and everywhere in between across the UK. So far, it’s driving positive impact, increasing productivity, and helping businesses supercharge their operations.
However, for all of the positivity that AI brings to organisations, it is also a threat to them, thanks to bad actors harnessing the technology for harm. As development progresses, security solutions are struggling to keep pace with the threats posed by cybercriminals.
Bad actors are leveraging AI to execute a higher number of more sophisticated and rapid attacks. The risk level is only going to increase, and UK organisations must be ready.
This is according to a recent report released by Microsoft in collaboration with Dr Chris Brauer at Goldsmiths, University of London.
The report states that in order for the UK to realise its ambition of becoming a global AI superpower, it must also cement its position as a cyber security superpower.
The report suggests there is a lot of work to be done as 87% of UK organisations are classed as being “Vulnerable” to cyberattacks. This includes 39% who are in an even more precarious “At High Risk” state, based on self-reported performance against a new academic model of cyber resilience, developed by the research team.
Cyber Security is a business priority and embedded in business strategy
Regular assessment of vulnerabilities allows quick response to threats
Business continuity plans include recovery strategy
Transparent with all stakeholders about cybersecurity risks and events, including employees, vendors, investors, clients and government
Have a strong commitment to investment in innovative technologies and invest well above the national average in R&D and innovation
Confident they know the skills they need to hire or outsource for cybersecurity roles
Trusted by the public and their employees to do the right thing
Cybersecurity is considered as a business priority by only a small amount of leaders
Regularly assess vulnerabilities but lack the proactive detection and prevention approach of resilient organisations
Inconsistent in response times to attacks and less likely to have business continuity plans
Leadership and employees are informed about any cyber threats but not all stakeholders are notified
More likely to be lacking in-house cybersecurity skills than Resilient organisations
Invest in new technologies but not enough to keep pace with the rate of innovation and change
Leadership are not regularly informed about cyber threats leading to a lack of leadership engagement when attacked
Unlikely to have a business continuity plan, making them slow to respond to attacks
Limited ability for risk mitigation as they are less likely to regularly monitor and assess vulnerabilities across their operations
Do not have a dedicated budget for upgrading cyber security or to cover cyber security costs
Find it difficult to assess what talent is required within their workforce, impacting recruitment and training
Low investment in technological upgrades and skills programmes
If you feel your organisation may be “Vulnerable” or “At High Risk” then get in touch with our team today to see how we can make you more resilient.
Check out the full report by clicking here.