| Naslov: | Human-AI integration in cybersecurity : an industry-aligned perspective on incident management |
|---|
| Avtorji: | ID Kincl, Jan, Institut "Jožef Stefan" (Avtor)
ID Adam, Marc T. P. (Avtor)
ID Pavleska, Tanja, Institut "Jožef Stefan" (Avtor) |
|---|
| Datoteke: |  URL - Izvorni URL, za dostop obiščite https://link.springer.com/article/10.1007/s10207-026-01259-5
 PDF - Predstavitvena datoteka, prenos (2,22 MB)
MD5: 8D88D9572571D0A80047CFECF804C68B
|
|---|
| Jezik: | Angleški jezik |
|---|
| Tipologija: | 1.01 - Izvirni znanstveni članek |
|---|
| Organizacija: |  IJS - Institut Jožef Stefan
|
|---|
| Povzetek: | The integration of Artificial Intelligence (AI) into cybersecurity incident management has gained momentum amid rising threats and increasing operational complexity. While academic research has been widely analysed and found to predominantly address detection tasks and algorithmic performance, the industry perspective remains under-explored, with limited understanding of its practices and priorities. This paper presents a document analysis of a rich corpus of publicly available, industry-issued reports, to examine how AI is understood, deployed, and evaluated in real-world cybersecurity operations. By contextualising the well-established Technology-Human-Task-Context (THTC) framework to the cybersecurity domain, we identify key dimensions shaping AI integration, including task alignment, human oversight, operational constraints, and expected benefits. Our findings highlight critical gaps in current implementations, such as limited attention to recovery, governance, and task assignment, and emphasise the dual role of human experts as both controllers and beneficiaries. To address these gaps and support actionable system design, we propose a set of industry-aligned recommendations derived from a synthesis of the THTC framework and document analysis. These recommendations encompass AI capabilities, integration requirements, task alignment, outcomes, risk management, control mechanisms, and human factors. Our work offers a comprehensive foundation for aligning academic research with industry needs, guiding the development of AI-powered cybersecurity expert systems that are technically effective, ethically sound, and operationally viable. |
|---|
| Ključne besede: | cybersecurity, incident management, document analysis, academia-industry alignment |
|---|
| Status publikacije: | Objavljeno |
|---|
| Verzija publikacije: | Objavljena publikacija |
|---|
| Poslano v recenzijo: | 18.11.2025 |
|---|
| Datum sprejetja članka: | 09.04.2026 |
|---|
| Datum objave: | 29.05.2026 |
|---|
| Založnik: | Springer Nature |
|---|
| Leto izida: | 2026 |
|---|
| Št. strani: | str. 1-29 |
|---|
| Številčenje: | Vol. 25, article no. 103 |
|---|
| PID: | 20.500.12556/DiRROS-29597  |
|---|
| UDK: | 004 |
|---|
| ISSN pri članku: | 1615-5270 |
|---|
| DOI: | 10.1007/s10207-026-01259-5 |
|---|
| COBISS.SI-ID: | 279861507 |
|---|
| Avtorske pravice: | © The Author(s) 2026 |
|---|
| Opomba: | Nasl. z nasl. zaslona;
Opis vira z dne 29. 5. 2026;
|
|---|
| Datum objave v DiRROS: | 29.05.2026 |
|---|
| Število ogledov: | 41 |
|---|
| Število prenosov: | 30 |
|---|
| Metapodatki: |    |
|---|
|
:
|
Kopiraj citat |
|---|
| | | | Objavi na: |  |
|---|
Postavite miškin kazalec na naslov za izpis povzetka. Klik na naslov izpiše
podrobnosti ali sproži prenos. |
