Salesforce: Half Of The Indonesian Security Team Already Uses AI Agents To Work

Illustration of AI Agents (photo: Salesforce)

JAKARTA - The latest Data State of IT from Salesforce shows strong optimism towards AI agents, with 100% of IT security leaders identifying at least one security challenge could be increased with AI agents.

In Indonesia alone, more than 51% of IT's security teams claim to have used AI agents in their daily work. This number is expected to be more than doubled in the next two years.

Even so, surveys of more than 150 IT leaders in Indonesia, including 75 professionals responsible for security, privacy and regulatory compliance, highlighted major challenges in terms of implementation.

Nearly 1 in 3 organizations (29%) are concerned that their data foundations are not yet ready to maximize AI's agents, and more than half (57%) are not entirely confident of having adequate safeguards to implement AI agents.

"49% of IT security leaders in Indonesia say that customers are still hesitant to adopt AI due to security and privacy concerns, it is clear that strong data management is no longer an option, but a must," said Gavin Barfield, Vice President & Chief Technology Officer, Solutions, ASEAN, Salesforce.

On the other hand, the report also sees that AI-based cyber threats are growing rapidly, and 71% of Indonesian IT leaders fear this threat will soon conquer traditional protection systems.

In addition to common attacks such as cloud security hacking, malware, and phishing, they are now increasingly wary of poisoning data, where cybercriminals damage data used to train AI, resulting in inaccurate or dangerous decisions.

Although 71% of Indonesian IT leaders claim to have quality data, only 57% believe their AI agents operate with correct permits and protocols, and only 43% believe that their security systems are adequate.

Therefore, it is very important to improve data governance in accordance with the regulations that have been implemented, such as the Personal Data Protection Law (PDP), to prevent cyber incidents.

For companies, this means they must adjust the internal system, policies, and practices of using AI in order to avoid legal risks and reputation.

Where this regulation requires organizations to obtain explicit permission from users before processing data, appoint data protection officers, immediately report violations, and comply with strict provisions in cross-border data transfers.