{"id":8707,"date":"2026-07-10T07:00:00","date_gmt":"2026-07-10T07:00:00","guid":{"rendered":"https:\/\/cybersecurityinfocus.com\/?p=8707"},"modified":"2026-07-10T07:00:00","modified_gmt":"2026-07-10T07:00:00","slug":"check-point-cto-jonathan-zanger-sees-ai-elevating-the-value-of-cyber","status":"publish","type":"post","link":"https:\/\/cybersecurityinfocus.com\/?p=8707","title":{"rendered":"Check Point CTO Jonathan Zanger sees AI elevating the value of cyber"},"content":{"rendered":"<div>\n<div class=\"grid grid--cols-10@md grid--cols-8@lg article-column\">\n<div class=\"col-12 col-10@md col-6@lg col-start-3@lg\">\n<div class=\"article-column__content\">\n<div class=\"container\"><\/div>\n<p>Check Point Software CTO Jonathan Zanger met with CSO Spain during the software company\u2019s Engage 2026\u00a0user conference last week in Paris.<\/p>\n<p>At the event, Check Point executives and representatives discussed how the company is dealing with various types of threats, how it is adopting AI securely, and how Check Point and others can leverage AI for their own benefit.<\/p>\n<p>\u201cThat\u2019s why I believe 2026 is a fascinating year to work in this field. Every technological change drastically affects cybersecurity,\u201d Zanger told CSO Spain. \u201cI think we\u2019re currently witnessing the biggest change since the advent of the internet. So, without a doubt, we\u2019re facing significant transformations.\u201d<\/p>\n<p>What follows CSO Spain\u2019s discussion with Zanger, edited for length and clarity.<\/p>\n<p><strong>How are AI agents changing the way we detect and stop cyber threats? What new risks are they creating?<\/strong><\/p>\n<p>I\u2019ll try to answer on several levels. The first is how we operate differently as a cybersecurity company protecting our clients.<\/p>\n<p>We\u2019ve always had teams of experts monitoring threats, identifying malicious actors, and creating new defenses for our products. Consequently, whenever we detected an APT group, we investigated it and created signatures to protect against it. Or when we saw a suspicious network used by threat actors, we identified its location and blocked it. While it\u2019s true that, in many ways, we were always limited by the number of talented people capable of gathering that intelligence and turning it into actionable defenses, what has AI allowed us to do? Dramatically scale this operation.<\/p>\n<p><strong>Could you give an example?<\/strong><\/p>\n<p>We\u2019ve always had\u00a0red teams testing our products to ensure their security. And we\u2019ve always valued those teams highly because they made our products significantly more secure. Now, those teams are incredibly powerful thanks to AI, working 20 times more efficiently. What do we have now? A combination of people and AI agents, with around 300 instances continuously monitoring and testing our systems. This is what allows us to deliver better cybersecurity and scale our capabilities.<\/p>\n<p><strong>But it\u2019s clear that malicious actors are using AI to carry out their operations\u2026<\/strong><\/p>\n<p>That\u2019s right. Just as it helped us scale our operations, it\u2019s also helped them. We\u2019re now seeing a proliferation of smaller, faster threat groups and malicious actors, capable of conducting\u00a0phishing\u00a0campaigns with less expertise than before. Consequently, we\u2019re seeing more people entering the field of offensive cybersecurity. So, perhaps the final piece of the puzzle is that organizations are adopting AI systems, and now we have a new challenge: How are we going to protect them?<\/p>\n<p><strong>In this context, what security challenges arise when AI agents can access and operate enterprise systems? In your opinion, what should organizations prepare for?<\/strong><\/p>\n<p>Systems used to be deterministic: Given the same input, they produced a predictable output, which made them easier to protect. With AI agents, this changes, as they understand natural language, handle ambiguity, and their behavior isn\u2019t always predictable, requiring a new approach to cybersecurity. Furthermore, something very important must be considered: AI depends on the systems it\u2019s connected to. There\u2019s a tension between security teams, who seek to limit these connections to reduce risks, and those promoting AI, who want to integrate it throughout the organization to gather information from any area.<\/p>\n<p>In other words, the more connections AI has, the greater the attack surface and the security risk.<\/p>\n<p><strong>How is generative AI making it easier for attackers to create cyberattacks? From your perspective, what are the most important defenses today?<\/strong><\/p>\n<p>AI has transformed software development, making it much faster and more accessible. But what\u2019s happening? Cybercriminals are exploiting this same capability, allowing them to escalate attacks like\u00a0phishing,\u00a0ransomware,\u00a0malware, and vulnerability exploitation, increasing both the speed and volume of threats.<\/p>\n<p><strong>What do you recommend doing in this scenario?<\/strong><\/p>\n<p>Defenders must also embrace AI. Detection and response are no longer enough when an attack can cause damage in seconds, so prevention plays a key role. While attackers maintain a certain advantage because they only need to hit once and are not subject to regulations, defenders have a differentiating factor: collaboration between teams, organizations, and security companies, which helps to level the playing field.<\/p>\n<p><strong>But you can\u2019t deny that many AI platforms still have vulnerabilities\u2026<\/strong><\/p>\n<p>That\u2019s right, because innovation often advances faster than security. That\u2019s why I recommend incorporating a layer of security from the very beginning of any AI project and not assuming that a platform is secure simply because it comes from a reputable vendor.<\/p>\n<p><strong>How can AI platforms be used securely in the face of the expanding attack surface? What do you consider to be the most significant risk?<\/strong><\/p>\n<p>Throughout the evolution of systems, innovation, and organizations, security hasn\u2019t always been a priority from the outset of product development. We see this because we investigate different platforms, especially AI platforms, to assess their security. This has allowed us to uncover serious vulnerabilities in every AI platform we\u2019ve analyzed over the past year, as well as in all major AI development tools.<\/p>\n<p>Now, I\u2019m not criticizing anyone here, because their job is to launch innovative products quickly. But I do believe security gaps exist. That\u2019s why I think that, in many cases, this is the role of organizations like ours: to work with companies to ensure that when they use this innovative technology, they do so in a way that protects their data, safeguards their employees, and doesn\u2019t increase their risk.<\/p>\n<p><strong>Would you share any lessons you\u2019ve learned from adopting AI?<\/strong><\/p>\n<p>Absolutely. The lesson I take away is that when you adopt AI, whatever the use case, you must do so by incorporating a layer of security. And don\u2019t assume a platform is secure just because it comes from an innovative AI company.<\/p>\n<p><strong>In your opinion, what are the most important innovations in security platforms today? And how do they help customers and organizations stay protected?<\/strong><\/p>\n<p>I\u2019d like to identify three major areas where AI is transforming cybersecurity. The first is the use of AI to strengthen defense operations. Just as it has revolutionized software development, AI is changing how security teams work, enabling them to detect vulnerabilities, assess security posture, implement changes, and respond to threats more quickly, efficiently, and scalably.<\/p>\n<p>The second area is the protection of the AI \u200b\u200bapplications and agents themselves. As these technologies are integrated into corporate networks, the challenge arises of ensuring they do not become a new attack vector or expose sensitive information. This is a very recent field, driven by the rapid adoption of generative AI, in which there is still ample room for innovation.<\/p>\n<p>Finally, I want to emphasize the need to defend against increasingly rapid and sophisticated AI-driven attacks. To this end, I advocate combining advanced models capable of detecting zero-day vulnerabilities and anomalous behavior with AI systems that simulate the behavior of an ethical attacker. This way, organizations can anticipate cybercriminals, identify their attack surface, and strengthen their defenses before an incident occurs.<\/p>\n<p><strong>The final question concerns the needs of small and medium-sized organizations, which want AI systems to be more transparent and easier to audit when they help detect or respond to threats. What are your thoughts on this?<\/strong><\/p>\n<p>I believe explainability is a crucial part of what we must offer our clients as cybersecurity advocates. There\u2019s always a tension between blocking something immediately and, at the same time, being able to explain why it was blocked. People like to understand what happened, and this presents a delicate balance. Therefore, my perspective is that we should automatically block as many threats as possible, without requiring human intervention, but we must also enable humans to understand what happened and modify the future behavior of the protection mechanisms.<\/p>\n<p><em><a href=\"https:\/\/www.computerworld.es\/profile\/victor-manuel-fernandez\/\">V\u00edctor Manuel Fern\u00e1ndez<\/a> attending Engage 2026 as a guest of Check Point Software.<\/em><\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/div>","protected":false},"excerpt":{"rendered":"<p>Check Point Software CTO Jonathan Zanger met with CSO Spain during the software company\u2019s Engage 2026\u00a0user conference last week in Paris. At the event, Check Point executives and representatives discussed how the company is dealing with various types of threats, how it is adopting AI securely, and how Check Point and others can leverage AI [&hellip;]<\/p>\n","protected":false},"author":0,"featured_media":8708,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[],"class_list":["post-8707","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-education"],"_links":{"self":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts\/8707"}],"collection":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=8707"}],"version-history":[{"count":0,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts\/8707\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/media\/8708"}],"wp:attachment":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=8707"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=8707"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=8707"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}