The landscape of cyber defence is undergoing a radical transformation, largely due to the rapid advancement of artificial intelligence (AI) and large language models. While these powerful new tools are being wielded by malicious actors to create highly sophisticated attacks—such as realistic deepfakes, personalised phishing emails, and advanced malware—they are also becoming a crucial asset for those on the defensive side. The cyber security industry is now actively integrating AI agents into its defence strategies to keep pace with these evolving threats.

Automating the Front Lines

For many large organisations, the sheer volume of cyber threats and alerts is overwhelming for human teams. A leading cybersecurity firm has developed autonomous, role-based AI agents, which are designed to handle the time-consuming and routine tasks that often bog down security professionals. This allows human experts to focus on more complex, strategic challenges.

This approach is not about replacing people but augmenting their capabilities. As one expert put it, having an AI agent is like having a “teammate that takes that incident response analyst and multiplies their capability.” These agents can handle tasks that are simple but repetitive, such as verifying the security of an executive’s device when they are travelling abroad. By automating such checks, security teams can respond to more pressing threats more quickly and efficiently. 

AI’s Double-Edged Sword

The need for this technological leap is becoming ever more apparent. In the past, tell-tale signs like poor grammar and strange fonts made phishing emails easy to spot. Now, AI can make a criminal’s attacks far more convincing and effective. As one industry leader explained, “AI can take the average bad actor and make them better, and so the trick is if you’re on the defensive side, you have to use AI because of the reality of what AI can do.”

Another technology firm specialising in communications has seen this firsthand. Its chief information and security officer noted that malicious actors are using AI to find vulnerabilities and exploit them at an unprecedented scale, allowing them to gain initial access and move within a network much faster than before. For this reason, cyber defenders must now, more than ever, lean into this new technology to stay ahead of the evolving threat landscape.

A Phased Approach to Adoption

While the potential of AI agents is clear, their implementation requires a cautious, phased approach. Companies are adopting a “crawl, walk, run” methodology, starting with basic automation before moving on to more complex, action-based tasks. Initially, AI agents might only comb through security logs, but as confidence grows, they can be trusted to take more definitive actions, such as quarantining flagged emails or restricting access for a compromised account.

Leading research and advisory firms are seeing a similar trend. One such firm’s analysis of IT leaders found that many have already deployed AI agents to some degree, particularly in back-office functions like IT and accounting. The feedback has been that the technology is “moderately beneficial” so far, with a focus on simple tasks. However, as the technology matures, its ability to scale and handle more complex, mission-critical tasks in cybersecurity is expected to grow rapidly.

The Future of Cybersecurity Professionals

For human professionals in the cybersecurity field, AI agents are not a threat to their jobs but a powerful new tool. The industry faces a significant talent gap, and AI can help address this by automating entry-level, menial work and freeing up skilled professionals to focus on high-value activities. It also offers a path for new talent to enter the field by bypassing some of the more tedious, foundational tasks. 

The consensus is that AI will not replace human intuition, strategic thinking, and the ability to handle novel, unprecedented attacks. Instead, it will serve as a partner, allowing experts to be more effective and better equipped to handle the escalating sophistication of cyber threats. Corporate adoption of AI in cybersecurity may even outpace other fields because organisations understand that their adversaries are already using this technology against them. The only way to win the battle is to use it in their own defence.

CREAPLUS, a trusted provider of cybersecurity and AI expertise, can assist your organisation in navigating this new era of digital defence:

1. Our specialists can help you draw up a robust strategy for integrating secure and responsible AI into your cyber defence operations.
2. We offer comprehensive services, from assessing your current security posture to implementing cutting-edge solutions that leverage AI agents for enhanced threat detection, analysis, and response.
3. With our deep understanding of the European regulatory landscape, we ensure your AI strategy not only strengthens your security but also aligns with key requirements like the NIS 2 and DORA directives.

Let us help you build a secure, efficient, and trusted business for the future.