AI and Cybersecurity: Opportunities and Threats

Kinomodus Slå av kinomodus Minispiller

Live at 17:30 on 16 October 2025

Tekna Big Data invites you to expert talks and discussions on AI in cybersecurity. We bring together industry specialists to shed light on:

• How AI is used in today’s security tools
• Emerging threats driven by AI
• Ethical and legal dilemmas
• How we can best prepare for a new security landscape

The programme

The Human Factor in AI-Powered OT Cybersecurity: Why Amplification Beats Automation

Daniel Arevalo, Lead Product Experience Designer

As cyberattacks on critical infrastructure surge, OT professionals are suddenly becoming more responsible for cybersecurity—but the tools they're given often create more confusion than protection. While the application of AI makes a very compelling case for full automation, this approach ignores a fundamental truth: when lives and critical infrastructure are at stake, human expertise cannot be replaced.

In this talk, Daniel challenges the "automate everything" mentality, demonstrating how AI can amplify rather than replace operational expertise. Through real-world examples from Omny's work in industrial cybersecurity, he'll explore how thoughtful incorporation of AI in products can transform overwhelmed engineers into confident cybersecurity champions by enabling them to conduct complex security activities and extract insight from their day to day operational language.

Attendees will discover the practical approach that Omny is taking for building AI tools that enhance human decision-making, measurably improving security practices and increasing resilience while maintaining the irreplaceable human judgment that critical infrastructure demands.

Get Ready for a New Security Era with AI-driven Digital Twin-based Security Orchestration, Automation and Response

Phu Nguyen, Senior Research Scientist at SINTEF

The digitisation leveraging technologies in the Internet of Things (IoT) and Cyber-Physical Systems (CPS) has been largely adopted together with the Digital Twin (DT) paradigm. However, the distributed and heterogeneous nature of IoT or CPS poses significant challenges in safeguarding against diverse attack surfaces, including physical devices, network infrastructures, and third-party integration. Furthermore, the evolving security threats and potential cascading effects from cyber attacks add another layer of complexity to the security landscape. In this talk, we present an AI-driven digital twin-based security orchestration automation and response framework, striving for business continuity (SOAR4BC). Leveraging system contexts from the DT in combination with security intelligence from the security tools gives us a holistic context for SOAR, which has not been seen in the existing approaches. By subjecting different types of (cyber-)security incident responses to rigorous experimental evaluation, we substantiate the efficacy and reliability of the SOAR4BC framework in detecting and responding to security (and business continuity) violations. Through this talk, we offer novel insights into the convergence of AI, digital twin technology and cybersecurity, illuminating the unique challenges and opportunities inherent in DT-based IoT and CPS systems.

From Findings to Fixes: How AI Can (and Can’t) Make Cloud Security Scanning Actionable

Davlet Dzhakishev, co-founder and CEO of Cloudgeni

Most Cloud security & compliance scanning tools are good at flagging problems, but they leave the hard part, remediation, to the user. Lately, AI has been pitched as the solution: tools that suggest remediations or even generate security patches. But in practice, this can be a double-edged sword. AI can reduce manual work, but it also introduces risk by proposing fixes that seem correct but are unsafe or non-compliant. In this talk, Davlet will walk through the current state of Cloud scanning tools, what AI is actually useful for today, and where human oversight is still essential. He’ll also share how some teams are safely using AI to accelerate remediation and the guardrails needed to make it work.