Companies are aggressively deploying AI far faster than they can govern it, creating a massive field of unmanaged risk, according to a new Vanta report. The "adopt now, govern later" mindset is driven by a frantic push for a competitive edge, leaving security teams scrambling to catch up.
Ignorance is risk: A survey of thousands of leaders found nearly 60% admit their teams are losing the arms race against AI-driven cyber threats. Nearly two-thirds confess they don’t fully understand the advanced "agentic AI" they're already deploying, and about half have already seen a resulting spike in AI-generated phishing and malware.
Welcome to security theater: This pressure has created a culture of performative safety. Over 60% of leaders say they now spend more time proving compliance than actually improving their defenses, with many dismissing today's frameworks as mere "security theater."
The central paradox is that companies see AI as both the threat and the solution, with a staggering 95% saying it makes their teams more effective. This is fueling a high-stakes rush to embrace a technology that remains dangerously misunderstood. The Vanta report also found that most leaders believe their security budgets are only half of what they should be, while separate research shows Fortune 100 firms are accelerating their public disclosures on AI risks. As companies grapple with these issues, the industry conversation is moving to events like Vanta's upcoming AI and trust conference.
