AI’s Role in Cybersecurity: Bridging Governance Gaps in Mexico’s Enterprises

AI Drives Cybersecurity in Mexico, but Governance Gaps Remain

Mexico City — As cyber threats evolve and digital transformation accelerates, artificial intelligence (AI) is becoming a cornerstone of cybersecurity strategies among Mexico’s largest enterprises. However, a new report from Microsoft highlights significant governance and preparedness gaps that could jeopardize these efforts.

The report, titled Cybersecurity 2025: Challenges and Strategies in the AI Era for Large Enterprises in Mexico, reveals that while 65% of Mexican enterprises recognize cybersecurity threats as a pressing concern, only 56% involve senior leadership in cybersecurity decision-making. This disconnect underscores a governance gap that could leave organizations vulnerable to risks.

Marcelo Felman, Cybersecurity Director for Microsoft Latin America, emphasizes the urgency of the situation: “The challenge is no longer if to invest in security, but how to scale it with AI and responsible governance across every layer of the organization.”

The study, conducted by Edelman for Microsoft, notes that the rise of cloud adoption, remote workflows, and increased data processing has made cybersecurity an integral part of business strategy. A striking 92% of cybersecurity specialists report that their programs align with corporate objectives, indicating a shift toward embedding resilience in operational decision-making.

However, the assessment of preparedness reveals a mixed picture. While 38% of IT specialists feel their organizations are highly prepared to tackle threats, 43% describe their readiness as moderate. This suggests that many companies still need to bolster their governance structures, controls, and training programs.

Despite improvements in data privacy management and digital identity oversight, significant gaps remain in formal policies governing AI usage and workforce training related to automated systems. The report highlights that 67% of companies have formal cybersecurity strategies, yet nearly half (47%) report moderate to high reliance on AI for detection and prevention functions.

The most prevalent threats identified include malware, ransomware, and phishing, with 20% of companies expressing concern over unauthorized use of generative AI tools and 18% worried about deepfakes. These risks highlight the urgent need for clear governance frameworks to regulate access and mitigate exposure to manipulated content.

Looking ahead, 60% of specialists anticipate that AI will significantly impact cybersecurity practices within the next two to three years. The emergence of intelligent agents capable of orchestrating workflows and enhancing defensive capabilities against sophisticated threats is seen as a game-changer.

Felman views the current landscape as an opportunity for organizations to reinforce their security commitments. Microsoft’s Secure Future Initiative aims to support organizational resilience by promoting readiness, a stronger security culture, and practices that safeguard critical data and operations.

Investment priorities are shifting as companies focus on cloud security, AI-enabled solutions, and advanced monitoring systems to enhance their prevention, detection, and response capabilities against increasingly sophisticated adversarial techniques.

To navigate this complex environment, the report offers six key recommendations for companies:

1. Make security a leadership priority to ensure proper oversight of cyber risk.
2. Strengthen digital hygiene by protecting identities and securing cloud perimeters.
3. Improve resilience through vulnerability assessments and operational training.
4. Invest in workforce development to align human capabilities with new technologies.
5. Prepare for emerging risks by exchanging threat intelligence and maintaining adaptive models.
6. Promote secure usage by implementing systems that guide users toward compliant actions.

As Mexico’s enterprises grapple with the dual challenges of advanced cyber threats and the integration of AI, the path forward will require a concerted effort to close governance gaps and enhance preparedness. The stakes have never been higher, and the time to act is now.