Future Of Threat Intelligence With AI: Gartner SRM Summit

Securing (Generative) AI Application Demands More Than Business as Usual – Presented by Bart Willemsen, VP Analyst, Gartner

Deepti Gopal, Director Analyst at Gartner,

FinTech BizNews Service

Mumbai, March 11, 2025: Today was the 2nd day of the Gartner Security & Risk Management Summit, currently taking place in Mumbai. Here is a collection of the key announcements and insights coming out of Day 2 of the conference.

Machine identities are as crucial as human ones

Ongoing technological and business disruptions are testing the limits of security programs and team performance. To maintain and enhance business value, security and risk management leaders must cultivate resilience across organizational, personal and team levels, ensuring the effectiveness of security programs in 2025. In this session, Deepti Gopal, Director Analyst at Gartner, highlighted the top trends in cybersecurity for 2025 and explained how chief information security officers (CISOs) can leverage them to enhance their cybersecurity outcomes.

Key Takeaways

• “As the threat landscape becomes increasingly complex and the human element plays a larger role, leaders are focusing on embedding resilience to strengthen organizations’ ability to respond to and recover from inevitable attacks.”
• GenAI is transforming data security programs. “Security leaders must adapt by investing in synthetic data tools, prioritizing unstructured data security, and employing technologies such as data security posture management (DSPM) for data governance.”
• “Machine identities are as crucial as human ones for ensuring security and mitigating future cyberthreats. Implement comprehensive policies and offer regular training for teams managing machine identities.”
• “Organizations must aim for a “target zone of optimization”- a balance that procurement, security architects, security engineers, and other stakeholders are satisfied with to maintain the right security posture.”
• “CISOs must proactively address personal and team burnout. Gartner predicts that by 2027, CISOs investing in cybersecurity-specific personal resilience programming will see 50% less burnout-related attrition than peers who don’t.”

The Future of Threat Intelligence with AI – Presented by Steve Santos, Sr Director Analyst, Gartner

Threat intelligence (TI) remains challenging for security teams and vendors due to the ever-growing volume of threat data, which is beyond human capacity to manage. However, AI is set to revolutionize TI execution and delivery. In this session, Steve Santos, Sr Director Analyst at Gartner, explored AI’s impact on cyber threat intelligence (CTI) and its future potential.

Key Takeaways

·        “Assess current CTI program and processes to identify areas where AI can enhance operations, aiming to automate 25% of manual work done in the CTI lifecycle by the end of the year.”

·        “Use AI processing to analyze CTI inputs to assign criticality, risk and prioritization. This will reduce false positives, investigation time, and address some CTI skills gaps.”

·        “Leverage process mining technologies and couple it with training data injected with CTI to improve reasoning and decision making.”

·        “Prepare for how AI-CTI will change security operations functions like incident response (IR), threat hunting and preemptive security in your environment.”

• “Multimodal AI isn’t here yet, but it’s a fast-approaching capability that will reshape the threat landscape.”

4. Securing (Generative) AI Application Demands More Than Business as Usual – Presented by Bart Willemsen, VP Analyst, Gartner

AI applications introduce new attack surfaces in the application development life cycle, necessitating dedicated and innovative security measures. In this session, Bart Willemsen, VP Analyst at Gartner, discussed strategies to secure AI and generative AI (GenAI) applications while highlighting best practices for effectively managing AI-related risks.

Key Takeaways

·        “When building a list of top priorities to manage AI risk, categorize actions into those needed for all applications and those for specific AI risks, which is where Gartner’s MOST framework comes into play.”

·        “Gartner's MOST Framework enhances model operations for reliability, strengthens security to prevent manipulation by malicious actors, and fosters trustworthiness by advocating for responsible AI practices.”

·        “Investing in AI security, risk, and privacy tools increases security operational costs, but also enables more revenue growth.”

·        “Gartner predicts by 2026, enterprises that invest in AI trust, risk and security management (TRiSM) controls will achieve 35% more revenue growth than those who don’t.”

·        “Security leaders must organize and budget for AI accountability and set up a unit for AI data classification and TRiSM technology operations.”