2026

State of AI, Developers, & Security

Our new report captures the voices of 450 security leaders (CISOs or equivalent), developers, and AppSec engineers across Europe and the US. Together, they reveal how AI-generated code is already breaking things, how tool sprawl is making security worse, and how developer experience is directly tied to incident rates. This is where speed and safety collide in 2025.

Download full report

Key Findings

AI Adoption

1 in 5 suffered a serious incident linked to AI code

“Whilst organisations battle to leverage the benefits of AI, there is often a hidden associated battle going on, and that’s to keep their organisation safe from an increase in cyber risk that AI presents. The role of the CISO is to ensure the security posture scales as quickly as the technology does.”

Darshit Pandya,

Senior Principal Engineer - Platform, Serko

53% blame the security team for incidents linked to AI code

Q. If a vulnerability introduced by GenAI code later caused a security incident‚ who would ultimately be held accountable in your organization? Select all that apply

“There's clearly a lack of clarity among respondents over where accountability should sit for good risk management”

Andy Boura,

CISO, Rothesay

State of AI, Developers, & Security

Key Findings

AI Adoption

1 in 5 suffered a serious incident linked to AI code

53% blame the security team for incidents linked to AI code

Developer Experience