Companies anticipate a wide array of applications for generative AI in cybersecurity over the next two to three years, but a top challenge is the cybersecurity skills gap, according to a report by CompTIA. To narrow the gap, US companies are using internal training to improve cybersecurity skills, with 43% helping employees pursue certifications.

In addition, companies are now seeing more and more uses for AI in cybersecurity. More than half of the companies included in the study, 53%, anticipate generative AI will aid in monitoring network traffic and detecting malware. Additionally, half of companies foresee generative AI being utilized for analyzing user patterns.

“Businesses have begun to recognize cybersecurity as a critical function,” Seth Robinson, VP of CompTIA, said in a press release. “The next stage necessitates a multi-faceted approach encompassing processes, policies, personnel and products.”

Other anticipated applications include automating responses to cybersecurity incidents, automating the configuration of cybersecurity infrastructure, predicting potential breach areas and generating cybersecurity defense tests.

Robinson also highlighted that the challenge in cybersecurity has intensified as organizations undergo digital transformation and closely align technology initiatives with business success.

The study revealed that approximately 40% of US respondents identified malware as their primary threat, followed by ransomware, firmware hacking and IoT-based attacks.

Moreover, the study indicated that 43% of the companies are actively supporting employees in pursuing certification to validate their cybersecurity knowledge, underscoring a heightened commitment to ensuring the company’s security.

CompTIA prepared the State of Cybersecurity 2024 report based on a survey involving 1,156 business and IT professionals engaged in cybersecurity for organizations across six geographic regions worldwide. The survey involved 511 professionals located in the United States.