As cyberattacks grow more complex and skilled professionals become harder to find, companies are turning to artificial intelligence to fill the gaps. According to a recent report by Red Canary, many cybersecurity leaders are now relying on AI-driven automation to manage the increasing volume of threats and data.

The report, released on Thursday, paints a picture of an industry stretched thin. Three-quarters of surveyed security executives admitted they do not have enough experts trained in intrusion detection, and 72% reported shortages in incident response teams. Making matters worse, nearly the same proportion said it now takes them longer to resolve an intrusion than it did before.

AI as a Tool for Relief and Risk

Cybersecurity professionals are experiencing burnout at record levels, and AI is seen as a partial solution. The Red Canary study, based on insights from 550 cybersecurity leaders across the United States and other Western nations, found that 85% worry they will be overwhelmed by threats if they do not adopt AI for assistance.

Red Canary co-founder Brian Beyer described AI as a “force multiplier,” emphasizing that its greatest strength lies in supporting human judgment rather than replacing it. He explained that organizations that adapt early will not only ease the pressure on their analysts but also stay ahead of new and unpredictable threats.

However, this growing dependence on AI has its own complications. Around three-quarters of the surveyed leaders fear that too much reliance on automation might dull their problem-solving skills. Nearly half (43%) even reported that their organizations had faced a cyber incident directly linked to the use of AI tools.

Balancing Innovation and Caution

Despite the risks, security executives still see enormous value in AI. With cybercriminals using stolen credentials instead of malware, identity-based attacks are on the rise. About two-thirds of respondents said they use AI for detection analytics, while 59% deploy it for intrusion detection.

The Red Canary report noted that roughly 80% of organizations had suffered breaches caused by credential theft in the past year. This shift marks a change in the tactics of cybercriminals, who increasingly exploit human weaknesses rather than system vulnerabilities.

The Expanding Attack Surface

As digital infrastructure grows, so does the challenge of securing it. The report revealed that the average organization’s attack surface has expanded by 41% over the past year. With more devices, cloud platforms, and endpoints to protect, cybersecurity teams are finding it harder to stay ahead.

The financial impact of these breaches is equally concerning. Respondents reported an average cost of $3.7 million per incident, with nearly half saying the breaches disrupted their operations temporarily.

Looking Ahead

The message is clear: AI is becoming an indispensable ally in cybersecurity. Yet, it also demands careful handling. Companies that manage to balance human intelligence with machine learning will likely emerge stronger. Those that over-rely on automation risk losing the very expertise that keeps them safe.

In a field where every second counts, the race is on to find that balance.