This is a paid press release. Contact the press release distributor directly with any inquiries.
AI Use in Cybersecurity Jumped From 50% to 78% in a Year. AI-Related Failures Rose Sharply Too. New SANS Institute Survey Reveals a Governance Gap

SANS Institute
Tue, July 14, 2026 at 12:59 a.m. GMT+5:30
3 min read
The 2026 SANS AI Survey, now in its second year, captures how cybersecurity practitioners and senior security leaders view AI adoption, governance, and offensive use across the security industry
Bethesda, MD, July 13, 2026 (GLOBE NEWSWIRE) — Security teams adopted AI faster in 2026 than in any year before, and the governance and workforce structures meant to support that adoption have not caught up. SANS Institute’s 2026 AI Survey Insights report gives an honest read of where the field is, not where it hopes to be. The report draws on responses from 536 cybersecurity and IT practitioners globally alongside a dedicated module completed by 57 senior security leaders, including CISOs, CSOs, and security vice presidents.
“For two years now, we’ve asked security teams where they actually stand with AI,” said Matt Bromiley, the report’s author and a SANS Certified Instructor. “Both years, the honest answer has been some version of moving fast and working it out as we go. What‘s changed in 2026 is how much weight is now sitting behind that answer.”
Red teaming moved from minority to majority practice in a single year: 61% of practitioners now use AI in red team work, up from 33% in 2025. Investigation, response, and application security have kept pace, treated as part of daily operations rather than something teams can shelve if results disappoint. Even so, just 27% of practitioners call their deployment mature production; most are still piloting AI or running it in a supporting role
Security teams are taking on more governance duties than their infrastructure can support. 76% now hold a governance role for enterprise AI, but more than half say no formal audit frameworks exist to back it up. That shortfall tracks with what practitioners are seeing in production: 63% report significant AI shortcomings in threat detection and response, up from 45% in 2025
Adversaries are not waiting for governance to catch up. They are folding AI into nearly every stage of the attack life cycle, from reconnaissance to exploitation to deepfake-driven social engineering, rather than relying on any single method. 78% of organizations reported confirmed or suspected AI-enabled attacks in the past year, and 95% of respondents believe threat actors are using AI
Human expertise still anchors the defense against AI-driven threats. Nearly half of practitioners name behavioral detection as their most effective control, followed by user awareness training (45%) and human analyst review (39%), the same skills the report ties directly to closing the workforce gap

