AI, unstructured data & risk-driven security to shape 2026

Enterprises are expected to face significant opportunities and risks in artificial intelligence (AI) and cybersecurity as technology strategies evolve towards 2026. Industry experts suggest the ability to manage unstructured data and adopt risk-centric cybersecurity models will be crucial for companies seeking competitive advantages amid ongoing digital transformation.

Data management

AI adoption continues to re-shape business processes. However, the complexity and scale of unstructured data remain a key challenge. Companies are amassing vast volumes of documents, emails, images, and other unstructured assets that often reside across incompatible systems and data silos.

"The era of AI is presenting enormous challenges and opportunities. Unstructured data is perhaps the biggest frontier for enterprises. It is vast, dispersed across multiple silos, and difficult to access and manage efficiently. Businesses that can unlock the full value of their unstructured data repositories and gather insights from that data are the ones that will gain the biggest competitive advantage in 2026," said Andres Rodriguez, Founder and Chief Technology Officer, Nasuni.

Centralising access to such data, according to Rodriguez, will demand advanced data management platforms capable of scaling alongside enterprise demands, maintaining data quality, and supporting seamless integration with AI models.

Cloud infrastructure

The shift to cloud-based infrastructure has emerged as a foundation for addressing unstructured data challenges. Cloud platforms offer scalability, global access, and high performance, enabling organisations to move away from isolated data storage towards unified access models.

"Moving to the cloud is an incredible foundational piece of the puzzle; it offers infinite scalability, global accessibility, and high performance. For the first time, we have cloud infrastructure that is equal to the scale of the challenge of unstructured data. Organisations can go from many hard to reach silos to having unified access to all of their unstructured data.

"At that point, seamless integration with multiple machine learning and large language models through standardised interface protocols (such as MCPs) enables ongoing insights and flexibility. Metadata-rich architectures will become the norm, providing the structure and automation needed to transform raw, unstructured data into a strategic enterprise asset," said Rodriguez.

He also highlighted the strategic shift from unstructured data serving as archive material to becoming a source of intelligence that supports enterprise decision-making and innovation.

Cybersecurity approaches

Alongside the management of data, executives are predicted to reassess their approach to risk in cybersecurity strategies. Historical focus on risk aversion is giving way to more dynamic and scientific risk management frameworks, adapted from industries known for robust risk analytics.

"Organisations that truly embrace risk in 2026 as part of their wider operating strategy will strengthen their cybersecurity and boost their competitive advantage. By taking a scientific approach to understanding, measuring and monitoring risk - right across a business, from competitive strategy to security posture - cybersecurity will become an asset, delivering wider benefits and a stronger market position," said Elyse Gunn, Chief Information Security Officer, Nasuni.

Risk mindset

Gunn referenced principles from the casino industry, which systematically monitors operational risk and deploys resources only where optimal returns can be achieved. This mindset, Gunn suggested, should inform cybersecurity policies in the face of rising external threats and constrained security budgets.

"Take the example of the casino industry: casinos are in the business of managing and monitoring risk all day long, in every aspect of operations, from the buffets to the card tables, yet there's the understood concept that "the house always wins.

"The secret lies in the casino industry's risk thinking, which involves taking a systematic approach to measuring the benefits and costs of risk, so they know exactly when they're willing to deploy resources across their operations to achieve a high financial reward, and more importantly, exactly where they are not," said Gunn.

Gunn said that risk profiling could help organisations maximise cybersecurity impact and productivity, even as operating resources become more restricted.

"This year, CISOs must apply this rigorous casino thinking to cybersecurity operations to strengthen their organisation's ability to innovate, when external risks are increasing but funding resources may be limited or declining. For example, while the benefits of dedicated security system access for the company's C-level team may carry high costs, risk profiling shows that enhanced company-wide security access controls can maximise risk reduction across the business, while also unleashing more individual contributors' productivity. It's the CISO's responsibility to ensure that in these operating areas where there's a very clear value-add to the wider organisation, these game-changing opportunities don't go begging," said Gunn.