Shilpi Handa,
Associate Research Director (META), IDC

As the Middle East, Türkiye, and Africa (META) region continues to evolve digitally, cybersecurity remains a critical concern for organizations. By 2025, several key focus areas are expected to dominate the cybersecurity landscape in the META region. A significant shift towards “best in platform” solutions over individual “best in breed” products is anticipated, driven by the need for comprehensive cybersecurity frameworks that can address the region’s pronounced skills gap and the increasing complexity of cyber threats. Integrated solutions offer streamlined and manageable security, which is crucial for organizations facing financial constraints and rapid digital transformation.

With the surge in identity-related breaches, Identity and Access Management (IAM) is set to be the paramount area for security investment. Following IAM, data security is another critical area of focus. The implementation of data privacy initiatives in countries like Saudi Arabia and Qatar has heightened the importance of protecting sensitive information. Organizations are expected to invest heavily in data security solutions to comply with regional regulations and safeguard their data. Developing a robust security awareness culture is crucial in combating phishing and malware attacks. The rise of generative AI technologies has made phishing attacks more sophisticated, necessitating enhanced security awareness programs. Organizations are likely to invest in training and awareness initiatives to mitigate these evolving threats. Additionally, securing Operational Technology (OT) infrastructure is vital for protecting critical services, especially in the energy sector.

The geopolitical dynamics of the META region increase the risk of sophisticated cyberattacks on vital services. Regulatory initiatives and the need to maintain public trust further underscore the importance of robust OT security measures. By focusing on these areas, organizations in the META region can strengthen their cybersecurity posture and enhance their resilience against emerging threats. The strategic emphasis on integrated solutions, IAM, data security, security awareness, and OT security reflects a comprehensive approach to addressing the complex cybersecurity challenges in the region.

Ezzeldin Hussein,
Regional Senior Director, Solutions Engineering, Sentinelone

As digital transformation accelerates across the Middle East, organizations face an evolving threat landscape marked by AI-powered attacks, increasingly sophisticated ransomware, and identity-based breaches. Security teams are under immense pressure — not just to prevent intrusions, but to detect and respond in real time, across complex hybrid environments.

The next phase of cybersecurity maturity lies in resilience. This means more than perimeter defense — it’s about autonomous protection, contextual awareness, and the ability to act faster than attackers can move. Resilient organizations are those that can adapt, recover, and continue operating even in the face of advanced threats.

The IDC Security Roadshow 2025 comes at a critical time, offering a platform for security leaders in the region to explore how AI, machine learning, and automation are shaping the future of threat defense. It’s a chance to rethink security strategies — from reactive to predictive, from manual to autonomous.

Cybersecurity is no longer a support function. It’s a business enabler.

Nasser AlGhamdi
GM of Cybersecurity, Saudi Commission for Health Specialties

AI is changing the way we stay safe on the internet. One thing many companies and individuals have been using historically is a list of known threats, but the hackers would not stay still. They would rename the code, switch servers, and find gaps in our security — and I’ve seen too many companies get left behind. But what they have missed is that this is AI’s real power; machine learning can identify undesirable behavior before serious damage is done. For instance, if an account suddenly logs in at midnight or downloads files it never uses, we can immediately stop it and address the problem before the hackers get the company’s data or overrun the system.

One of the main reasons I like AI is that it reduces false alarms. It knows that a deliberate spike in data could be normal for the marketing team around a product launch. The value of context is you avoid being inundated by meaningless alerts and allow yourself to focus on the real threats that warrant your attention.

Hackers, too, use AI to circumvent obsolescent defenses. They experiment with new techniques, hone their tactics, and mount attacks against those who don’t catch up. And so on, and on, and on it goes, this cat-and-mouse game — and it’s not going to stop anytime soon. The solution is to make sure we train our AI on current data. We use the data that we made available to it about known tactics and habitual behavior to optimize its ability to spot anomalies that might be the start of a new threat.

Despite its promise, AI is not a panacea. It relies on human involvement to set it up, review alerts, and make final decisions. It can occasionally make mistakes, and we must be prepared to step in to prevent breaches. However, if we rely solely on manual checks, we risk falling behind. Security teams must collaborate with AI, allowing it to handle most tasks while experts address the more complex issues.

I am also concerned about privacy. AI can observe everything from user logins to emails. We must establish clear boundaries: collecting only what is necessary, ensuring security, and informing individuals about why we monitor their data. Transparency is crucial for gaining the trust of employees and customers. AI can be a force for good, but it must be handled with care.

Looking to the future, I envision AI playing an even more significant role in preventing attacks before they occur. It will analyze patterns across various companies, detect threats early, and disseminate warnings so others can stay prepared. However, attackers can exploit this same technology, crafting convincing phishing emails or customizing malware for specific targets. This reality keeps me vigilant, reminding me that our defenses must evolve as rapidly as the offenses we face.

Ultimately, AI is a partner rather than a replacement for human insight. It should handle the heavy lifting, allowing us to concentrate on planning and creativity. We can defend ourselves robustly and personally by combining relentless AI with real-world expertise. It is akin to having a loyal watchdog by our side, always ready to raise the alarm. This sense of security keeps us calm, even in turbulent times, and reassures us that as digital threats evolve, so too do our defenses, one line of code at a time.

Frank Dickson,
Group Vice President, Security & Trust, IDC

GenAI was coming. Predictive AI was coming. No . . . wait, it was already here. Anyway, we sit here today focused on the art and the genuineness of the possible.

As we consider and dream of the possible, we sometimes forget the reality of the now. Between the hype around GenAI and the COVID-19 pandemic before that, we sometimes fail to acknowledge that cybersecurity has grown up. Once the dominion of hoodie-wearing basement dwellers, the topic has elevated to the C-suite and beyond. Attacks from the cyberthreat landscape do not just present a technical risk — the ramifications create a risk to the organization itself. In essence, cyber risk equals business risk.

Unlike many other corporate functions, cybersecurity did not develop from the typical path of strategy, goals, policies then tactics. It started in reverse with tactics first, then policies, then goals, and finally to strategy — if it made it there at all. The result is that formal strategy is really more of an amalgamation of small tactical decisions over time. This opportunistic cybersecurity strategy creation makes it challenging for organizations that are looking to create competitive advantages with AI. Thus, security needs to evolve from the tactical to the strategic, from being reactive to being proactive, from being an inhibitor to an enabler.

Cybersecurity leaders must now think strategically and act as business leaders alongside the executives of their organizations — creating insights, aiding executives in decision-making, and showing an organization’s risk posture are all critical for cybersecurity leaders’ success in today’s fast-changing threat landscape and regulatory environment.

The IDC Security Roadshow & CISO Excellence Awards looks to address security in this new reality of security becoming an enabling function for AI-created competitive advantage. We aim to guide you in working with the CEO and board of directors as we transition to delivering secure outcomes and a trusted organization to our executive constituencies.

Mario Foster,
Group Chief Information Officer, Al Ghurair Group

Conglomerates, especially family-owned businesses, manage a complex array of industries, including real estate, manufacturing, construction, automotive, food, retail, logistics, and FMCG, to name just a few. Each industry comes with its own set of challenges, expectations, and leadership goals. At Al Ghurair Group, we have found that AI not only serves as a critical enabler of innovation but also acts as a unifying force to address the diverse needs across these verticals.

One of the biggest challenges is the differing demands and expectations from leaders within each sector. For example, in manufacturing and automotive, leaders may focus on precision, efficiency, and reducing downtime, while in retail, the emphasis may be on enhancing customer experience and personalization. In the food industry, sustainability and food safety are often paramount, while construction leaders may prioritize project management and cost optimization. Each vertical looks to technology for unique benefits, and AI allows us to tailor solutions to meet these varied demands.

At the holding or corporate head office (HO) level, the challenge is to ensure alignment between the diverse business verticals while maintaining group-wide governance, compliance, and reporting standards. AI supports these requirements by centralizing data management, improving visibility across subsidiaries, and enabling accurate and timely reporting. This not only strengthens decision-making at the group level but also ensures that strategic initiatives are cohesively implemented throughout the conglomerate.

AI enables us to harness data from multiple sectors and multiple resources, providing valuable insights that enhance decision-making at the executive level. Predictive analytics allows us to anticipate market trends, optimize supply chains, and streamline operations, while addressing the specific challenges of each industry. This ensures a cohesive strategy that benefits the entire group while also aligning with the goals of individual business leaders.

AI’s role in automating routine daily tasks and driving efficiencies is equally crucial. Whether we’re managing construction projects, enhancing customer experiences in retail, or optimizing production lines in our manufacturing and automotive operations, AI solutions ensure that processes are standardized and optimized across the board. The ability to implement adaptable AI solutions tailored to each business vertical — while maintaining centralized oversight — enables the group to deliver value across sectors rapidly.

Additionally, AI helps overcome the challenge of differing time horizons and business cycles within any conglomerate. Leaders in industries like real estate and construction may take a long-term view, focusing on sustainability and gradual growth, while in sectors like food and retail, shorter business cycles demand agility and quick decision-making. AI helps conglomerates bridge this gap by providing real-time insights and forecasting capabilities, allowing each vertical to operate optimally within its own cycle.

As we continue navigating an increasingly digital world, AI remains integral to maintaining the agility and competitive edge needed to thrive as a diverse conglomerate. It enables us to unify innovation while ensuring that each business vertical benefits from the latest advancements in technology, contributing to the success of the entire group.

Damian O’Gara,
CIO, Kent

Throughout my career I have seen some emerging technologies not entirely deliver on their expected promise, or their progress is hindered by regulatory and other constraints. Other technologies, mooted to transform our world, eventually find their niche, as in the case of blockchain and fintech, and others truly do become ubiquitous and land in the plateau of productivity — cloud computing being one.

Artificial Intelligence is revolutionizing various aspects of our world through its remarkable capabilities in predictive analytics, text summarization and generation, sensing our environment, and some impressive robotics.

The power of AI in leveraging data for predictive analytics cannot be overstated. Businesses are increasingly harnessing this capability to forecast trends, optimize operations, and make informed decisions. In the energy industry AI-enabled predictive maintenance is fast maturing increasing asset reliability and saving costs.

With respect to text generation and summarization, AI has made significant strides. Generative AI is already making inroads to transform corporate back offices and enhance productivity. From creating reports to summarizing complex documents, AI’s linguistic capabilities are revolutionizing how businesses handle information, making processes more efficient and accessible.

AI’s capacity to sense the environment is particularly evident in computer vision applications. For example, this technology is transforming drone operations, enabling the inspections of energy assets with accuracy. AI-powered drones can autonomously navigate complex environments, detect obstacles, and make real-time decisions, showcasing AI’s ability to interpret and respond to visual data.

AI is not just a passing trend but a fundamental shift in how we approach technology and problem solving. Its diverse applications in predictive analytics, text summarization, environmental sensing, and robotics are reshaping industries and creating new possibilities. As AI continues to evolve, its impact on our daily lives and various sectors of society will only grow, solidifying its position as a transformative force that is here to stay.