CrowdStrike conducted a global survey of 1,022 cybersecurity professionals to gauge their views on the adoption of generative AI (GenAI) and its implications for the industry.

The findings highlight significant enthusiasm for GenAI’s potential to strengthen defenses against increasingly advanced threats. However, concerns remain regarding risks such as data exposure and attacks targeting GenAI systems.

While much has been speculated about GenAI’s transformative impact, the survey results provide clearer insights into how cybersecurity professionals are assessing its role.

The report states, “We’re entering the era of GenAI in cybersecurity,” yet emphasizes that success in adopting this promising technology will depend on its safe, responsible, and industry-specific deployment.

CrowdStrike’s research uncovers five critical takeaways that shape the current state of GenAI in cybersecurity:

1. Platform-based GenAI is preferred
80% of respondents favor GenAI delivered through integrated cybersecurity platforms rather than standalone tools. The ability to seamlessly integrate with existing systems is essential, with many valuing tools that work cohesively within the broader technology ecosystem. The report notes, “GenAI’s value is linked to how well it works within the broader technology ecosystem.”

Additionally, 63% of respondents would consider switching security vendors to gain access to GenAI capabilities from competitors, underscoring the industry’s demand for unified platforms that simplify operations and reduce complexity.

2. GenAI built by cybersecurity experts is essential
Security professionals believe that GenAI tools must be specifically designed for cybersecurity, not general-purpose systems. 83% of respondents expressed that they would not trust tools offering “unsuitable or ill-advised security guidance.”

Breach prevention is a central concern, with 74% of respondents either having experienced breaches in the past 18 months or being worried about vulnerabilities. Respondents prioritized vendors with proven cybersecurity expertise over those with general AI leadership. As CrowdStrike concluded, “The emphasis on breach prevention and vendor expertise suggests security teams would avoid domain-agnostic GenAI tools.”

3. Augmentation, not replacement
Despite widespread concerns about automation replacing jobs, the survey found minimal worry about job displacement in cybersecurity. Respondents expect GenAI to enhance analysts’ workflows by automating repetitive tasks, reducing burnout, speeding up onboarding, and improving decision-making.

GenAI’s most requested applications included threat intelligence analysis, investigation support, and automated responses. The report states, “Respondents overwhelmingly believe GenAI will ultimately optimise the analyst experience, not replace human labor.”

4. ROI outweighs cost concerns
For organizations considering GenAI investments, the primary concern is measurable return on investment (ROI), not licensing costs or pricing confusion. Respondents expect platform-led GenAI deployments to yield faster results, with cost savings from streamlined tool management, training, and fewer security incidents.

The expected ROI distribution includes 31% from cost optimization and more efficient tools, 30% from reduced incidents, and 26% from lower management time. Security leaders are focused on ensuring financial justification for GenAI investments.

5. Guardrails and safety are critical
GenAI adoption is tempered by safety and privacy concerns, with 87% of organizations either implementing or planning new policies to oversee GenAI use. Risks include the exposure of sensitive data to large language models (LLMs) and adversarial attacks on GenAI tools. Respondents emphasized the importance of safety and privacy controls, highlighting the need for responsible deployment.

Reflecting cautious optimism, only 39% of respondents firmly believed the rewards of GenAI outweigh its risks, while 40% considered the risks and rewards to be “comparable.”

Current state of GenAI adoption in cybersecurity
While GenAI adoption is still in its early stages, interest is growing. 64% of respondents are actively researching or have already invested in GenAI tools, and 69% of those evaluating options plan to make a purchase within the year.

Security teams are motivated by three key factors: improving attack detection and response, enhancing operational efficiency, and addressing staffing shortages. Among economic factors, ROI remains the top priority, indicating that security leaders want to demonstrate tangible benefits to justify their spending.

CrowdStrike underscores the importance of a platform-based approach, where GenAI is integrated into a unified system, ensuring seamless adoption, measurable benefits, and safety protocols. The report asserts, “The future of GenAI in cybersecurity will be defined by tools that not only advance security but also uphold the highest standards of safety and privacy.”

In conclusion, CrowdStrike states that “GenAI is not a silver bullet,” but it holds tremendous potential to improve cybersecurity outcomes. As organizations evaluate its adoption, they will prioritize tools that integrate well with existing platforms, offer faster response times, and ensure safety and privacy compliance.

As cybersecurity threats become increasingly sophisticated, GenAI’s role in enabling security teams to work faster and smarter could become indispensable. While still in its infancy, GenAI in cybersecurity is on track to shift from early adoption to widespread deployment, provided its risks are managed responsibly.