CISOs face rising pressure as AI reshapes cybersecurity work

Splunk research reveals that cybersecurity leaders feel their roles have become more complex as companies adopt AI and face more advanced threats.

Cybersecurity leaders are taking on a broader role as companies bring artificial intelligence into their systems and daily work. A new report based on a survey of 650 chief information security officers (CISOs) shows that many now deal with a wider mix of tasks. These include managing cyber risk, guiding AI use, and helping businesses respond to a steady rise in online threats.

The findings come from The CISO Report: From Risk to Resilience in the AI Era, released by Cisco through its Splunk unit. The study looks at how security leaders are adjusting their work as AI tools spread across companies.

"CISOs operate in the eye of the storm, at the center of constant transformation. Role responsibilities expand, threats evolve, and AI accelerates everything," said Michael Fanning, CISO, Splunk, a Cisco Company. "This expanded mandate brings an exceptional level of pressure and personal accountability. We are not just managing technology. We are managing risk, talent, and the digital resilience that drives critical business outcomes."

AI enters the security workflow

Many security teams are starting to use AI to help review large volumes of security data. The survey shows that 92% of CISOs say AI helps their teams review more security events. About 89% report better links between different data points when AI tools assist with analysis.

Threat activity remains the top concern. Around 95% of respondents say the growing skill of threat actors is the biggest risk they face. In response, many plan to improve their threat detection and response systems. About 78% also aim to strengthen identity and access controls, while 68% plan to invest in AI tools for cybersecurity work.

Some organizations are testing agent-based AI systems that can carry out tasks with less human input. Among CISOs who already use these systems, 39% say reporting speeds have more than doubled. Only 18% of those still exploring the technology report similar gains.

Many respondents believe these systems will expand the amount of data security teams can review. The same share, 82%, expects them to speed up how teams connect events and respond to threats.

At the same time, many leaders remain cautious about the risks tied to AI. About 86% think AI may make social engineering attacks more convincing. Another 82% worry that attackers could use AI to build stronger and more complex methods for staying inside networks.

A role with higher stakes

The report also shows how the job of the CISO has changed in recent years. Nearly four out of five respondents say their work has become far more complex.

Personal risk has grown as well. More than three-quarters of CISOs now worry about personal liability if a major security breach occurs. Last year, just over half shared that concern.

AI oversight has also become part of the role. Almost all respondents say CISOs now help guide AI risk and governance. More than four out of five also oversee secure software development practices.

Even with new tools, many security leaders see people as the key to filling skills gaps. Their plans focus on training current staff, hiring new employees, and bringing in outside contractors when needed.

This approach reflects the view that human judgment still matters in tasks such as threat hunting and incident analysis.

Security teams also rely on support from other senior leaders. Joint work with other executives helps secure funding, share security data, and guide key projects. Many CISOs say this shared responsibility leads to better results.

Pressure inside security teams

The report also points to stress inside many security groups. Nearly two-thirds of respondents say their teams face moderate to high burnout.

Several factors contribute to that strain. High alert volumes top the list, cited by 98% of CISOs. False alerts follow at 94%. Tool fatigue, where teams must manage too many security systems, affects 79%.

Many organizations are trying to address these problems by bringing security data into a single view. Security leaders also work to explain technical risks in simple business terms when speaking with company leadership.

Data sharing still faces hurdles, though. Privacy concerns remain the main barrier, cited by 91% of respondents. Storage costs and limited shared data views also slow progress.

The report suggests that CISOs are now working closer to the center of business strategy. Their role includes helping companies measure security outcomes, such as fewer incidents and faster detection and response times. These metrics help leaders explain the value of cybersecurity work to the rest of the business.