A recent report published by Cyera entitled “State of AI Data Security: How to Close the Readiness Gap as AI Outpaces Enterprise Safeguards,” based on a survey of 921 IT and cybersecurity professionals, finds that although 83% of enterprises “already use AI in daily operations…only 13% report strong visibility into how it is being used.” The report concludes:
The result is a widening gap: sensitive data is leaking into AI systems beyond enterprise control, autonomous agents are acting beyond scope, and regulators are moving faster than enterprises can adapt. AI is now both a driver of productivity and one of the fastest expanding risk surfaces CISOs must defend.
The survey results show that although AI adoption in companies is rapid, most enterprises are “blind to how AI interacts with their data.” This is complicated by the fact that autonomous AI agents are difficult to secure and very few organizations have prompt or output controls, including the ability to block risky AI activity by employees.
In addition, most of the respondents acknowledged that AI tools used in the organization are “over-accessing data.” This is further complicated by the fact that a small minority of those surveyed (7%) have a “dedicated AI governance team, and just 11% feel fully prepared for regulation.”
The conclusion is: “the enterprise risk surface created by AI is expanding far faster than the governance and enforcement structures meant to contain it.”
We have previously commented on how important AI Governance Programs are in mitigating the risks associated with AI use in an organization. The Cyera Report reiterates that conclusion. If you are one of a vast majority of organizations who have not developed an AI Governance Program yet, it’s time to make it a top priority.