{"id":229268,"date":"2026-06-10T08:00:00","date_gmt":"2026-06-10T12:00:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/06\/10\/closing-the-cybersecurity-gap-from-detection-to-decisions\/"},"modified":"2026-06-10T08:05:30","modified_gmt":"2026-06-10T12:05:30","slug":"closing-the-cybersecurity-gap-from-detection-to-decisions","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/06\/10\/closing-the-cybersecurity-gap-from-detection-to-decisions\/","title":{"rendered":"Closing the Cybersecurity Gap: From Detection to Decisions"},"content":{"rendered":"<p><a href=\"https:\/\/aijourn.com\/closing-the-cybersecurity-gap-from-detection-to-decisions\/\">Closing the Cybersecurity Gap: From Detection to Decisions<\/a><\/p>\n<p><a href=\"https:\/\/aijourn.com\/closing-the-cybersecurity-gap-from-detection-to-decisions\/\">https:\/\/aijourn.com\/closing-the-cybersecurity-gap-from-detection-to-decisions\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-06-10 08:00:00<\/a><\/p>\n<p>Source Domain: <a href=\"aijourn.com\">aijourn.com<\/a><\/p>\n<p>Author: <a href=\"\"><\/a><\/p>\n<p> Using an unordered list, summarize the following article with between 4 and 8 key points. <\/p>\n<p>\t\t\tBad actors will always be able to out-engineer companies, adopting new technologies, like AI, with speed, creativity, and intent. Companies are limited by structure, governance, and deliberate caution in adopting new technologies.\u00a0 \u00a0<br \/>\nTo remain resilient in this new wave of change, companies must become proactive, highly coordinated, focused on risk, and able to support AI-assisted decision-making. To succeed, business and security leaders must reframe security around continuous visibility, prioritized risk, and actionable threat, anchored by operational context.\u00a0<br \/>\nAsymmetrically Shifting Models: Attackers and Organizations\u00a0<br \/>\nAttackers are not constrained by protecting their reputation or trying to protect customer data.\u00a0\u00a0They do not need governance, committees, and have no need to be cautious in their adoption of new technology.\u00a0\u00a0Enterprises, on the other hand,\u00a0must\u00a0act with a level of responsible governance, which often results in slower, more deliberate adoption of technology.\u00a0\u00a0For highly regulated organizations, this may have meant adopting\u00a0new technology\u00a0months or\u00a0years after its\u00a0availability.\u00a0<br \/>\nWhile the need to protect the enterprise has stayed the same, the ability for bad actors to quickly adopt AI is\u00a0changing\u00a0the landscape\u00a0dramatically.\u00a0\u00a0The gap between how attacks are executed and how\u00a0organizations\u00a0respond continues to widen.\u00a0<br \/>\nThe Democratization and Industrialization of Cybercrime\u00a0<br \/>\nWith AI, attackers are now able to coordinate, plan, and enact attacks at machine-speed. Reports show that\u00a0activities that\u00a0used to take days now takes minutes, overrunning traditional detection and response models. Phishing attacks have increased by 1265%, breach volume is at record levels, and the average cost of an AI-powered breach is a 13% increase at $5.72M.\u00a0AI Cyber Attack Statistics 2025, Trends, Costs,\u00a0Defense\u00a0<br \/>\nIt is occurring at scale,\u00a0leveraged\u00a0by state actors and hacker groups alike. It is used to continuously rebuild malware to avoid detection, to perform social engineering at scale, and to execute multi-step attacks with minimal human involvement and\u00a0at a speed no human-led process could match.\u00a0Threat Report,\u00a0GTIG AI Threat Tracker\u00a0<br \/>\nWith AI, the same threats are faster and more frequent. They are also easier to execute. AI has lowered the barrier to entry for attackers, enabling less skilled\u00a0actors\u00a0to cause greater damage.\u00a0How Attackers Use AI,\u00a0KELA AI Threat Report\u00a0<br \/>\nIn cybersecurity, the bad actors only need to get the attack right once. Companies need\u00a0repel the attacks adequately\u00a0every time.\u00a0The\u00a0attackers have the advantage, especially as volume and frequency increase.\u00a0\u00a0<br \/>\nThis shift places significant pressure on existing security operating models.\u00a0<br \/>\nTraditional Security Models Need to Change\u00a0<br \/>\nTraditional security models focus on reactive activities, instead of proactive risk management. The process of reviewing an alert, escalating the incident, and approving the resolution no longer aligns with\u00a0the speed with which\u00a0attacks now unfold.\u00a0<br \/>\nIn many cases, by the time an alert is reviewed, the attacker has already moved laterally,\u00a0established\u00a0persistence, or exfiltrated data.\u00a0The issue is structural, not\u00a0capability.\u00a0\u00a0<br \/>\nSecurity teams are overwhelmed by volume. Recent analysis shows security operations teams still spend\u00a0most of\u00a0their time on reactive work, rather than proactive risk reduction (AI Agents Are the Next Paradigm Shift in Cyber\u00a0Defense\u00a0\u2013 GeekWire).\u00a0<br \/>\nThe result is predictable. The organization becomes increasingly reactive, dealing with the most visible issues while the higher-risk exposures\u00a0remain\u00a0unresolved.\u00a0<br \/>\nThe\u00a0core\u00a0of this challenge is the ability to understand which risks matter.\u00a0<br \/>\nThe Role of Operational Context\u00a0<br \/>\nNot all risks are equal.\u00a0<br \/>\nOrganizations often prioritize based on severity scores, compliance requirements, or tool-generated rankings. These signals provide information, but they do not provide context.\u00a0<br \/>\nA vulnerability in a non-critical system is treated the same as one in a system that underpins revenue or regulatory obligations. Both generate alerts\u00a0and\u00a0demand attention. Only one\u00a0represents\u00a0material risk to the business.\u00a0<br \/>\nAttackers already prioritize in this way, focusing effort where impact is highest and\u00a0defenses\u00a0are weakest\u00a0(AI-driven attack optimization analysis).\u00a0<br \/>\nWhen security teams understand how risks connect to business services, customers, and outcomes, prioritization becomes clearer. Decisions improve because they are based on impact rather than volume.\u00a0<br \/>\nWithout this context, organizations struggle to align effort with risk\u00a0and coordination becomes difficult.\u00a0<br \/>\nCoordination as a Security Capability\u00a0<br \/>\nRisk, security, IT, and business teams often\u00a0operate\u00a0with different data, different priorities, and different definitions of urgency. When an issue arises, decisions,\u00a0these perspectives\u00a0must\u00a0be\u00a0reconciled,\u00a0increasing friction and slowing decisions.\u00a0<br \/>\nAttackers\u00a0do not have these limitations.\u00a0<br \/>\nFor organizations, improving coordination means making risk visible in a way that is understood across functions. It means defining ownership clearly and reducing the time between identification and action.\u00a0<br \/>\nThis requires alignment at the operating level\u00a0as well as the\u00a0strategic-level. Without it, even well-funded security programs struggle to respond effectively. Poorly implemented, coordination introduces\u00a0additional\u00a0steps and delays. Structured correctly, it reduces friction and enables faster decision-making.\u00a0\u00a0<br \/>\nFrom Detection to Decision\u00a0<br \/>\nThe shift organizations need goes beyond technology\u00a0or people. Adding more tools, more alerts, or more people does not solve the problem. It increases complexity and makes coordination harder.\u00a0<br \/>\nWhat changes outcomes is decision-making\u00a0and the speed thereof.\u00a0\u00a0That speed depends on how clearly risk is defined and how quickly ownership is\u00a0established.\u00a0<br \/>\nOrganizations\u00a0need to move from detection-led security to decision-led security. That means understanding which risks matter, why they matter, and what action should be taken now.\u00a0<br \/>\nMost security teams already have the data they need. What they lack is\u00a0the ability to parse the signal from the noise and act with confidence. AI, when applied correctly, helps connect signals across systems,\u00a0identify\u00a0patterns, and highlight priorities that would otherwise be missed. Organizations that use AI effectively are already seeing measurable improvements in detection speed and resilience (New Report Shows How AI Gives Cybersecurity Competitive Advantage | Scoop News).\u00a0<br \/>\nWhen AI is used for the sake of speed, it increases noise.\u00a0When\u00a0it\u2019s\u00a0used\u00a0to escalate\u00a0what requires attention, it sharpens focus\u00a0and reduces noise instead.\u00a0<br \/>\nAI and the Quality of Decisions\u00a0<br \/>\nThe role of AI in this model is often misunderstood. Its value is\u00a0in\u00a0the ability to improve the quality of decisions.\u00a0<br \/>\nAI can connect signals across systems,\u00a0identify\u00a0patterns\u00a0and exposures that would otherwise remain hidden. Organizations applying AI in this way are already seeing improvements in detection speed and resilience\u00a0(How attackers use AI in cyber attacks).\u00a0<br \/>\nFaster responses to low-priority issues do not improve outcomes. Decisions that prioritize the right risks do.\u00a0<br \/>\nThis introduces a new dependency on governance. AI outputs must be explainable, aligned to risk definitions, and embedded within decision-making processes.\u00a0<br \/>\nLeadership and Accountability\u00a0<br \/>\nThis shift extends beyond technology and process and into culture. It requires alignment at the leadership level.\u00a0<br \/>\nOwnership of cybersecurity risk cannot sit solely within security teams. Business and technology leaders must define what risk is acceptable and how it should be managed. This must be done\u00a0before\u00a0it\u2019s\u00a0required, and\u00a0be tested.\u00a0Otherwise, decision-making slows at the exact point\u00a0when\u00a0speed is\u00a0required.\u00a0<br \/>\nMany organizations have already invested significantly in tooling. The constraint is\u00a0in\u00a0how decisions are made, how risk is defined, and how teams align around it\u00a0(WEF, University of Oxford publish Cyber Resilience Compass with seven pathways to build robust cybersecurity roadmaps \u2013 Industrial Cyber).\u00a0<br \/>\nWhere this alignment exists, decisions are faster and more consistent. Where it does not, delays occur at the point where clarity is\u00a0required.\u00a0<br \/>\nClosing the Gap\u00a0<br \/>\nThe gap between attackers and organizations is widening.\u00a0<br \/>\nAI has increased\u00a0the\u00a0speed, scale, and accessibility of attacks. The advantage sits with those who can act quickly and adapt continuously.\u00a0<br \/>\nOrganizations will\u00a0retain\u00a0governance, accountability, and structure. These are necessary. The opportunity is in how they are applied.\u00a0<br \/>\nClarity of risk, proactive\u00a0alignment across teams, decisions\u00a0anchored\u00a0in context.\u00a0<br \/>\nThese are the areas where organizations can close the gap.\u00a0<\/p>\n<p>Melissa Cohoe is a second-generation IT professional with over 20 years\u2019 experience in a variety of roles, including Risk Management Consulting, General Manager of Professional Services, Application Management, Development Management, and Event Management, IT Disaster Recovery, and IT Risk Management.\u00a0 At New Rocket, she is the Global Strategist for Security, Risk, &#038; Resilience with responsibility for innovation, thought leadership, and advisory services for Security, Risk, Resilience, and AI Governance programs at NewRocket.\u00a0<\/p>\n<p>Melissa has multiple hobbies, including reading, music (playing as well as listening), and powerlifting.\u00a0 \u00a0<\/p>\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Closing the Cybersecurity Gap: From Detection to Decisions https:\/\/aijourn.com\/closing-the-cybersecurity-gap-from-detection-to-decisions\/ Publish Date: 2026-06-10 08:00:00 Source Domain:&#8230;<\/p>\n","protected":false},"author":1,"featured_media":229269,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/aijourn.com\/wp-content\/uploads\/2026\/06\/Screenshot-2026-06-10-at-7.58.46-PM.png","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,30,24,35,32,25,27],"class_list":["post-229268","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-breach","tag-cybersecurity","tag-hacker","tag-malware","tag-phishing","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/229268"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=229268"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/229268\/revisions"}],"predecessor-version":[{"id":229270,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/229268\/revisions\/229270"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/229269"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=229268"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=229268"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=229268"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}