AI boosts short-staffed security teams, but skills gap still a major risk

With cyber threats growing and skilled professionals in short supply, security teams are increasingly turning to AI to fill the gap. According to Fortinet’s 2025 Cybersecurity Skills Gap report, 97% of 1,850 IT and security leaders in 29 countries are using or planning to use AI-based tools.

The need is urgent: 86% of surveyed organizations suffered at least one breach in 2024, and 28% had five or more—up significantly from 2021. Over half (52%) said breaches cost them more than $1 million.

AI is helping—80% said it makes teams more effective—but nearly half worry about AI being used by attackers. At the same time, 48% say they lack the internal expertise to fully integrate AI into their defenses.

Experts stress that AI is no silver bullet. The cybersecurity workforce shortage remains severe, with over 4.7 million roles unfilled globally. And while many employers are offering higher pay and perks to attract talent, retention is still a challenge.

Training and certification investments are also slipping, with only 73% of employers funding certs in 2025, down from 89% last year. Experts warn this could widen the gap between AI adoption and secure implementation.

“To stay ahead of threats, organizations must invest in both technology and talent,” said Fortinet CISO Carl Windsor. “Without skilled professionals to manage AI and defend against AI-powered threats, the risk will only grow.”