Sydney, Australia (20 September 2018)—Despite heightened interest in enterprise deployment of artificial intelligence, only 40 per cent of respondents to ISACA’s second annual Digital Transformation Barometer express confidence that their organisations can accurately assess the security of systems based on AI and machine learning.
This becomes especially striking given the potential for serious consequences from maliciously trained AI; survey respondents identify social engineering, manipulated media content and data poisoning as the types of malicious AI attacks that pose the greatest threat to society within the next five years.
AI/machine learning also continued to rise toward the top of technologies considered to have the highest potential to deliver transformative value to organisations. While placing second in these rankings in the 2017 and 2018 Digital Transformation Barometers, AI/machine learning went from 18 points behind big data in 2017, to just 3 points behind big data in 2018. As the perceived value of AI continues to increase, the proportion of organisations planning to deploy AI continues to increase as well, with a 35 per cent increase over the 2017 report.
“Enterprises must make the needed investments in well-trained staffs capable of putting AI safeguards in place,” said Rob Clyde, CISM, NACD Board Leadership Fellow and ISACA Board Chair. “As AI evolves—consider the likely proliferation of self-driving vehicles, or AI systems designed to reduce urban traffic—it will become imperative that enterprises can provide assurance that the AI will not take action that puts people in harm’s way.”
In addition to today’s common uses for AI, such as virtual personal assistants and fraud detection, there are high hopes that AI and machine learning have the potential to set major breakthroughs in motion across various industries, including helping to accelerate medical research, improving farmers’ crop yields and assisting law enforcement with solving difficult cases. These advancements, though, are unfolding so quickly that it often is challenging for organisations to develop the expertise needed to put the corresponding safeguards in place to account for potential security vulnerabilities and ethical implications.
While AI/machine learning—along with big data and the public cloud—lead the way in promising enterprises transformative value, these technologies also are among the top five facing organisational resistance in their deployment, with public cloud prompting the highest level of resistance (52%) globally. Interestingly, in Australia / New Zealand (ANZ), blockchain was listed as the highest resistance (48%) to deployment with public cloud ranking second (46%).
The more than 5,000 respondents among ISACA’s global community of business technology professionals also helped to identify which emerging technologies appear to be more hype than reality. Big data, AI/machine learning and public cloud were the top three technologies that practitioners anticipate will be deployed at their enterprises in the next year, while only 12% globally (9% in ANZ) indicate their organisations will deploy blockchain, and the percentage drops to 6% (7% in ANZ) for augmented reality/virtual reality.
Other research highlights:
Organisations overwhelmingly pursuing digital transformation
Nine in 10 enterprises are attempting digital transformation as they look to spark innovation and explore efficiencies, but a majority of them (64%) are encountering challenges in trying to integrate emerging and immature technologies.
The research findings suggest that organisations still are evaluating the worth of digital transformations and often are guided by leaders lacking digital literacy—an understanding of technology and its related risks and benefits. However, organisations that have embraced emerging technologies have been rewarded. The Digital Transformation Barometer data explores the progress that organisations have made on this frontier, the extent to which they understand and are adopting transformative technologies, the impact of digital literacy, and the state of this journey through different industries across the world.
“ISACA’s global membership shows in this research that digital transformation is by no means complete, and organisations are still struggling with fundamental questions of risk, security and return on investment,” said Clyde. “It’s impossible to guarantee results when deploying less familiar technologies, but this survey suggests that organisations that have adopted new technologies overwhelmingly consider their journeys to be worthwhile. As organisations continue to navigate uncertain territory, finding qualified leaders to help steer these journeys and instill an organisational commitment to innovation is critical.”
Familiarity breeds confidence
For emerging technologies such as AI, having digitally literate leaders correlates to lower perceived risks, which can be key when making the case for deploying technologies. In turn, the actual deployment and testing of technologies gives companies the chance to familiarise themselves with these emerging technologies, which can help companies more accurately assess risk vs. reward.
• 33 per cent of companies whose leaders do not possess technological expertise perceive AI to be high-risk, while just 25 per cent of companies with digitally literate leaders perceive AI to be high-risk. • Organisations led by digitally literate leaders were almost twice as likely to deploy AI than other organisations (33 per cent compared to 18 per cent). • For enterprises going hands-on with emerging technologies, the perceived benefits of deploying these technologies is clear. Using AI as an example, 76 per cent of enterprises testing AI said that it was worth the risk, with just 9 per cent saying that it was not worth the risk. In enterprises that are not testing AI, the confidence in AI being worth the risk drops by a third, while the proportion of respondents saying it is not worth the risk more than doubles.
While the results highlighted here are specific to AI, other emerging technologies follow similar patterns when considering how digital literacy impacts deployment, and how respondents weigh risks and rewards.
Digital Literacy Stays Consistent Year-Over-Year
Critically, the previous edition of the ISACA Digital Transformation Barometer Survey found that just 53% of respondents described their leadership as being digitally literate. In 2018, globally that number stayed consistent, with 54% of respondents describing their leadership as digitally literate. However, in ANZ the number increased 11 percentage points compared to 2017. There are a number of benefits organisations reap when their leaders are digitally literate:
• Digitally literate executives are far more receptive to adopting emerging technologies. 96% of companies with digitally literate executives were very or moderately receptive to trying new technologies. • Digitally literate leadership leads to less resistance within organisations to deploying emerging technologies. • Digitally literate leaders are more likely to be planning to deploy technologies that are key indicators of organisational digital transformation in the next year. Companies guided by these leaders are nearly twice as likely to deploy AI within the next year, and slightly more likely to deploy big data, than those without.
For the full 2018 Digital Transformation Barometer research report and to access related resources, visit www.isaca.org/digital-transformation-barometer.
About ISACA’s Digital Transformation Barometer Research The ISACA Digital Transformation Barometer research, conducted in the first quarter of 2018, includes survey responses from 5,847 information technology, security and business executives, managers and professionals from a wide range of industries, company sizes and global locations, including Africa, Asia, Europe, Latin America, Middle East, North America and Oceania. Results can be found at www.isaca.org/digital-transformation-barometer.
About ISACA Nearing its 50th year, ISACA® (isaca.org) is a global association helping individuals and enterprises achieve the positive potential of technology. Today’s world is powered by technology, and ISACA equips professionals with the knowledge, credentials, education and community to advance their careers and transform their organisations. ISACA leverages the expertise of its 450,000 engaged professionals in information and cybersecurity, governance, assurance, risk and innovation, as well as its enterprise performance subsidiary, CMMI® Institute, to help advance innovation through technology. ISACA has a presence in more than 188 countries, including 217 chapters worldwide and offices in both the United States and China.
Twitter: www.twitter.com/ISACANews LinkedIn: www.linkedin.com/company/isaca Facebook: www.facebook.com/ISACAHQ Instagram: www.instagram.com/isacanews/
Contact: Julie Fenwick, +61 468 901 655 firstname.lastname@example.org Harriet Hall, +61 401 068 041 email@example.com
Email fraud is nothing new, but online criminals have become ever more-effective at spoofing their identities to trick employees into sending them money. The Australian Centre for Cyber Security (ACSC) recorded losses of over $20M to business email compromise (BEC) attacks last year alone, up 230 percent over the previous year – and the full amount is certain to be much larger.
Cybersecurity Insights - Attack
No matter how robust your security, or how diligent your employees, network credentials are a free pass for cybercriminals. This is mostly because employees are relied upon for their own password management. And with more than 4.8 billion sets of stolen credentials said to be available online, odds are that at least a few of your employees’ user IDs and passwords are just waiting to be used by unscrupulous outsiders. Are you ready to stop them?
Cybersecurity Insights - People
Cyber resilience will be particularly important as Australian organisations face increased pressure to quickly detect, respond to, and manage the repercussions of breaches in the wake of 2018’s Notifiable Data Breaches (NDB) scheme.