Tenable issues new major report on risks facing business in post AI landscape

According to the study, 82% of organisations now operate hybrid environments spanning on premises and cloud, and 63% use more than one cloud provider, managing an average of 2.7 environments. With each IT environment bringing its own tools, policies and shared responsibility models, the cloud and AI workload sprawl creates complex and fragmented systems that leave major blind spots for security teams. The result is disjointed visibility, inconsistent identity governance, and gaps in risk monitoring that attackers can exploit. As AI-driven workloads add more layers of complexity, identity has become one of the biggest sources of weakness in this environment, with inconsistent governance and excessive permissions regularly cited as drivers of cloud breaches.

This shift is driven by cost pressures, regulatory requirements, and performance needs and, in some cases, has led organisations to move their cloud-based workloads back on premises for greater control. While the report shows that many organisations have adopted solutions such as unified security monitoring (58%), Cloud Security Posture Management (57%), and Extended Detection and Response (54%), the shift toward broader visibility across hybrid and cloud environments remains nascent. Many tools still operate in silos, limiting their ability to unify risk control. Consequently, few organisations have the consistent policy enforcement, identity management, and risk monitoring needed to secure such a diverse IT landscape.

The State of Cloud and AI Security 2025 research, commissioned by Tenable and developed in collaboration with the Cloud Security Alliance, surveyed more than 1000 IT and security professionals worldwide to understand how organisations are adapting their strategies to manage risk across increasingly complex cloud and AI driven infrastructures.

“The report confirms what we’re seeing every day in the field. AI workloads are reshaping cloud environments, introducing new risks that traditional tools weren’t built to handle," said Liat Hayun, VP of Product and Research at Tenable.

“We’re in the middle of the fastest evolution in cloud computing history. Unfortunately, as our research made clear, many security strategies are already behind the curve,” said Jim Reavis, Co-founder and CEO, Cloud Security Alliance. “The risks of standing still are growing by the day. Organisations need to rethink their approach and build adaptive, future-ready defences that are capable of evolving as fast as the technology they safeguard.”

To support this strategic reset, Tenable Cloud Security helps organisations unify visibility and risk management across their IT, hybrid, and multi-cloud environments. It tackles identity, misconfigurations, and access governance head-on while enabling teams to integrate AI-specific exposures into their risk strategies. This allows security teams to shift from reactive incident management to a proactive approach to exposure management.

Download the report here.

Read the article online at: https://www.worldpipelines.com/business-news/10092025/tenable-issues-new-major-report-on-risks-facing-business-in-post-ai-landscape/