Cybersecurity in the age of AI: why people still matter

The UK’s cybersecurity sector is booming. According to UK Cyber Security Sectoral Analysis 2025, the sector generated £13.2 billion in revenue and created 6,600 new jobs in the past year. It’s an industry success story, but one born out of a response to the growing volume and complexity of cyber threats, many of which are powered by malicious use of AI.  

While companies are investing heavily in advanced security technology, their effectiveness often hinges on something less glamorous, but equally critical – the ‘human firewall’.  

Safeguarding issues  

Employees are a vital line of defence in an organisation’s security. They are also the most targeted, and this has increased in recent years as AI-powered social engineering tactics become more persuasive and successful.  

Rather than placing blame on or getting rid of people, employers need to invest in their human firewall through continuous training. Recent attacks on retailers such as the Co-op, Harrods, and M&S (which is expected to cost the UK business £300 million) serve as a reminder that safeguarding systems begins with valuing and strengthening people.  

AI-powered tools enhance threat detection and speed up responses to incidents, but they’re not a silver bullet. Their effectiveness still relies on the insight and judgement of those who use and manage them. It’s essential to equip and educate teams to use these advanced tools responsibly and effectively. 

But how can organisations close a widening skills gap when AI is reshaping the way we work? 

The rise of AI-powered attacks 

Cybercriminals are using AI to launch faster, more convincing and adaptive attacks – from deepfakes to credential stuffing. These highly targeted and evolving threats can bypass traditional defences, making them harder to identify. 

This new wave of AI attacks is forcing organisations to rethink their security strategies, some of which involve fighting AI with AI. But leaning too heavily on automation can bring some unwanted consequences.   

The automation trap 

AI is fantastic for streamlining repetitive tasks and scaling operations, but it can’t completely replace human expertise, a common misconception that organisations have when it comes to adopting AI solutions. Automation improves response times, but it can fall short when it comes to interpreting complex scenarios or making judgment calls in real time. 

The balance lies in understanding that AI can improve an organisation’s capacity to work and defend, but human oversight remains the cornerstone of an effective cybersecurity strategy. This is why upskilling employees, especially those outside of core security teams, is essential. 

Upskilling the ‘human firewall’ 

Cybercriminals frequently exploit human behaviour with social engineering tactics that manipulate people’s trust, curiosity, fear, and lack of awareness about current cyberattack methods in order to gain valuable information.  

These vulnerabilities aren’t due to people’s negligence; it’s the ingenuity of cybercriminals and the limitations of technical safeguards that are creating a problem. Strengthening the ‘human firewall’ then means moving beyond one-off training sessions and improving an organisation’s entire security posture. 

The ‘mindset-skillset-toolset’ triad model 

Businesses can enhance their cybersecurity defences by adopting a comprehensive ‘mindset-skillset-toolset’ triad model, which ensures thorough training across all levels.  

1. Mindset: highlight the individual’s responsibility. When employees believe their actions directly impact security outcomes, they’re more likely to engage with best practices.  
2. Skillset: effective training has to go beyond theory. Simulated phishing attacks, real-world scenarios that are analysed, and next-gen AI-powered personalised learning help employees develop the critical skills needed to recognise and respond to threats in real-time. Building muscle memory through repetition is key. 
3. Toolset: introduce processes and tools that strengthen employees’ security stance. One example is to introduce password managers to discourage the use of the same log-ins across multiple accounts, which is often done out of convenience. 

A resilient security culture doesn’t happen by chance. It’s created by building the right attitudes, providing hands-on skills, and a good toolkit. With this approach, organisations reduce their risks and turn their people into proactive defenders against AI threats, in turn strengthening their firewall. 

The secret value of ‘least privilege’ access  

Another strategy when it comes to proactive cybersecurity defences is to enforce the principle of ‘least privilege’ access. This tactic grants users access ONLY to the data that’s needed for their role. Limiting excessive access is important for preventing the potential for widespread data exposure and damage in the event of an account compromise. At the same time, it’s also important to avoid overly restrictive access, which can hinder productivity and lead to shadow IT issues.  

Striking this delicate balance when it comes to privileged access is where sophisticated permission managers are invaluable tools to work with. They streamline this process and take away the guessing game of who has been granted access to what.  

Human control 

AI’s influence on cybersecurity will continue to evolve, but the crucial role of human expertise remains paramount. People are indispensable for tasks that AI cannot handle alone, such as managing AI systems and navigating complex, nuanced scenarios. AI serves as a powerful assistant. Organisations must prioritise upskilling their workforce to effectively wield these tools and maintain a strong human defence against ever-evolving cyber threats.