Global Survey Reveals Disconnection Between AI and Security in Cloud Environments
in AI, News
- Survey of over 1,100 cybersecurity leaders highlights a growing disparity between AI adoption and security effectiveness.
- Results are detailed in the 2026 State of Cloud Security Report.
- Three primary factors contribute to the widening complexity gap.
A recent global survey involving more than 1,100 cybersecurity leaders has uncovered a significant disconnect between the adoption of AI in cloud environments and organizations’ abilities to secure them effectively. The findings, detailed in the 2026 State of Cloud Security Report sponsored by Fortinet, point to an emerging “cloud complexity gap.” This gap signifies the disparity between rapid cloud operations and the security teams’ capacity to ensure real-time visibility, detection, and response.
Vincent Hwang, Vice President of Cloud Security at Fortinet, emphasizes that as organizations make significant strides into an AI-powered future, cloud security has become increasingly vital for resilience and possibly even survival.
The report, compiled by Cybersecurity Insiders and based on the feedback of 1,163 senior cybersecurity professionals globally, shows that while investments in cybersecurity are on the rise, the maturity and effectiveness of security measures are not keeping pace with the complexities introduced by AI and cloud technology.
Factors Contributing to the Complexity Gap
The analysis identifies three main pressures contributing to this complexity gap. The first is the proliferation of fragmented security defenses. As organizations adopt cloud solutions at an unprecedented rate, they are acquiring numerous security tools that often lack proper integration. This leads to disjointed systems, inconsistent protocols, and insufficient end-to-end visibility. Approximately 70% of organizations cite tool sprawl and visibility gaps as the biggest hurdles to effective cloud security.
The second issue is the strain on cybersecurity teams. Many organizations are grappling with a persistent skills shortage, making it difficult to recruit qualified cybersecurity professionals. This “gap-within-the-gap” results in overwhelmed teams, slow response times, and missed alerts. A staggering 74% of respondents reported an active shortage of cybersecurity talent, while 59% acknowledged that they are still in the early stages of developing their cloud security strategies.
The third pressure arises from threat actors who increasingly employ automation and AI to exploit vulnerabilities at machine speed. These malicious actors can quickly identify misconfigurations, map out permission paths, and detect exposed data faster than traditional defenses can respond. Consequently, 66% of cybersecurity professionals surveyed expressed a lack of confidence in their ability to detect and counter cloud threats in real time.
The Growing Complexity of Cloud Environments
In addition, the complexity of cloud environments is also on the rise. Even deployments with a single provider now feature distributed architectures, dynamic identities, and expansive data flows. For many enterprises, this complexity grows further with hybrid and multi-cloud strategies that integrate multiple public clouds, on-premises infrastructure, Software as a Service (SaaS) applications, and a distributed user base. According to the survey, 88% of organizations are now navigating hybrid or multi-cloud environments, an increase from 82% last year. Among those, 81% are utilizing two or more cloud providers, while 29% have incorporated more than three.
As these cloud environments become more intricate, the attack surface expands. The introduction of new services, users, and data pathways complicates the security landscape, making it challenging for cybersecurity teams to keep pace with ever-evolving threats.
Shifts in Security Strategies
In light of these challenges, many organizations are reevaluating their security strategies. The survey indicates a clear trend away from isolated point solutions in favor of unified security ecosystems. If starting anew, 64% of respondents indicated they would prefer a single-vendor platform to integrate network, cloud, and application security. Security teams are increasingly overwhelmed by the integration demands of multi-vendor toolsets, while consolidation appears to offer stronger visibility, quicker detection, and improved threat management.
The report concludes that organizations must confront the combined pressures of rapid growth, fragmentation, limited cybersecurity expertise, and threats fueled by AI to establish robust cloud security foundations. For those embarking on AI-driven strategies, solidifying a secure operational base is more critical than ever.
