Adoption of AI security tools across cybersecurity teams is the subject of a report published by the IT association ISC2. Its 2025 AI Adoption Pulse Survey is based on some 436 global cyber security people employed by organizations of all sizes, about the impact of AI adoption on team effectiveness, entry-level jobs and cybersecurity hiring.
ISC2 Chief Qualifications Officer Casey Marks said: “AI is reshaping how organizations operate, and cybersecurity is no exception. Our latest AI Survey shows cautious but growing interest in AI security tools, with adoption expected to accelerate in the future. Encouragingly, 44pc of professionals report no impact on hiring from current or expected adoption of AI security tools, and 28pc see AI creating new opportunities for entry-level talent. Findings suggest that AI is helping cybersecurity professionals by automating repetitive tasks and enabling them to focus on more meaningful work.”
According to the survey, 30pc of cyber professionals have already integrated AI security tools into their operations, defined in the survey as “AI-enabled security solutions, generative AI, and/or agentic AI for automatic action.” Additionally, the majority (42pc) are exploring or testing their adoption, indicating strong momentum toward implementation. Among those who have already adopted AI security tools, 70pc report positive impacts on their team’s overall effectiveness. The top five areas where AI security tools will have the most positive impact on operations in the shortest amount of time – improving efficiencies and automating time-consuming tasks:
• Network monitoring and intrusion detection: 60pc
• Endpoint protection and response: 56pc
• Vulnerability management: 50pc
• Threat modeling: 45pc
• Security testing: 43pc
The largest organizations, with over 10,000 employees, lead the adoption of AI tools as part of their cybersecurity operations, with 37pc actively using them. This is closely followed by mid-to-large (2,500 to 9,999 employees) and smaller (100–499 employees) organizations, each with 33pc adoption. In contrast, mid-sized (500 to 2,499 employees) and the smallest (one to 99 employees) organizations show the lowest adoption rates, with only 20pc in each group actively using AI for security. Notably, the smallest organizations are also the most conservative, with 23pc reporting no plans to evaluate AI security tools.
Among industries adopting, evaluating or testing AI tools for their security operations, industrial enterprises (38pc), IT services (36pc), commercial/consumer sectors (36pc), and professional services organizations (34pc) are leading the way. In contrast, financial services and the public sector currently report the lowest adoption rates, at 21pc and 16pc, respectively.
However, some industries with the lowest current adoption rates are most likely to be considering AI tool integration. Within financial services and commercial/consumer sectors, 41pc of professionals reported actively evaluating these tools, while 36pc of those in the public sector indicated the same.
Impact on hiring
A majority of respondents agree that AI security tools will affect hiring at the entry level in cybersecurity. More than half (52pc) say AI will significantly or somewhat reduce the need for entry-level staff. However, 31pc expressed a more optimistic view, believing that AI will also create new types of entry- and junior-level roles or increase demand, helping to counter the decline elsewhere in early-career opportunities. Respondents expressed optimism about the wider cyber hiring landscape amid AI adoption. Nearly half (44pc) agreed that their workplace’s cyber hiring has not yet been affected by the introduction of AI security tools. In contrast, 21pc say AI has changed their hiring plans and priorities in their organizations.
At the same time, the report authors add, it’s clear that AI security tools are reshaping roles and responsibilities of existing staff. According to the survey, 44pc of cybersecurity professionals said that their organizations are actively reconsidering the roles and skills needed to support the adoption and use of AI security tools.
For the survey visit https://www.isc2.org/Insights/2025/07/2025-isc2-ai-pulse-survey.
Congress
ISC2’s Security Congress from October 28 to 30 in Nashville is due to include sessions on AI. Visit https://www.isc2.org/Insights/2025/07/sneak-peek-webinar-ai-at-ISC2-secuity-congress. Speakers include Brian Krebs, cybercrime investigative journalist and author.
