Navigating the Trilemma: Cybersecurity Braces for the Age of AI

Organizations are grappling with a complex new reality in cybersecurity: securing systems with artificial intelligence, securing for AI itself, and defending from AI-powered threats. This three-pronged challenge is driving both investment and anxiety, as companies weigh technological solutions against the fundamental need for robust governance, according to recent analysis.

A senior official at Cisco Live! 2025 articulated the core dilemma, stating, “Right now, I think a lot of organizations are thinking about security around AI from three different perspectives: They’re thinking about security with AI, security for AI and security from AI.” The official further noted a hesitation regarding “how much do you invest in specific technology solutions versus taking care of the foundation of what you need to do from a governance perspective.”

The Promise of AI in Security

The integration of AI-powered features into existing security platforms is already underway. Solutions from companies like SentinelOne, Sophos, and Zscaler are gaining traction, but organizations face the challenge of selecting and integrating the tools that best suit their unique environments.

However, the benefits are becoming increasingly clear. A recent survey of over 1,000 cybersecurity professionals conducted by ISC2 revealed that 82% believe AI will enhance their job efficiency. The primary appeal lies in AI’s ability to automate repetitive, lower-value tasks, such as user behavior pattern analysis, network traffic monitoring, and threat detection.

This is particularly crucial for the healthcare sector, which is facing widespread staffing shortages – not only in clinical roles but also within cybersecurity teams. For many health systems, maintaining 24/7 security monitoring is financially unsustainable without the support of automated processes and managed services.

Safeguarding AI Systems Themselves

The need for “security for AI” is particularly acute in healthcare, where AI use cases are rapidly expanding. From computer vision applications in virtual nursing programs to chatbots assisting clinicians with administrative tasks, these systems require stringent safeguards. The National Institute of Standards and Technology (NIST) has cautioned that malicious actors are actively seeking to manipulate AI systems, potentially causing them to malfunction.

The Rising Threat of AI-Enabled Attacks

Perhaps the most pressing concern is “security from AI.” The 2024 ISC2 survey highlighted growing anxieties about cybercriminals leveraging AI to spread misinformation. Deepfakes, sophisticated disinformation campaigns, and increasingly convincing social engineering attacks are identified as the most significant threats.

Illustrating this danger, YouTube issued a warning earlier this year regarding phishing emails that featured AI-generated clips of its CEO. This incident underscores the potential for AI to be weaponized in highly targeted and deceptive attacks.

A Collaborative Approach to AI Security

Ultimately, robust AI and data governance will be essential for healthcare organizations as these technologies become more pervasive. The path forward requires a multidisciplinary approach, mirroring the collaborative nature of clinical patient care. Organizations are encouraged to partner with experts to develop comprehensive AI and security strategies, ensuring a proactive and adaptable defense against evolving threats.