Splunk GovSummit 2026: Closing the Structural Gap in AI-Driven Cyber Resilience

Industries Bill Rowan

Key takeaways

  1. Digital resilience is now essential as organizations face growing cyber threats, AI adoption, and complex systems, but many are held back by outdated infrastructure.
  2. Splunk and Cisco help address this by combining data, AI, and automation to give teams real-time visibility and faster response across their entire environment.
  3. Organizations that modernize their systems and use AI-driven tools are better able to detect threats, recover quickly, and operate with greater confidence.

Digital resilience has shifted from a strategic aspiration to an operational requirement. In both the public and private sectors, we are navigating a high-stakes landscape of expanding attack surfaces, accelerated digital transformation plans, and the rapid adoption of AI.

Better Together: Powering Government Resilience

In the AI era, resilience depends on understanding what’s happening across complex, interconnected systems. Together, Cisco and Splunk uniquely combine deep network intelligence with real-time security and observability to give agencies a unified view of critical infrastructure across networks, applications, and data. This helps teams detect issues faster, understand impact clearly, and protect mission-critical services with confidence.

As digital environments become more distributed, the role of public sector practitioners (from SOC analysts to SREs and ITOps) has never been more vital. Today, at GovSummit 2026 in Washington D.C., attendees will hear how we are supporting these teams with:

While these innovations provide the roadmap for digital resilience, Splunk’s latest research, in collaboration with Foundry, reveals the structural hurdles facing both public and private sector leaders as they try to turn AI ambition into operational reality.

The Structural Gap: Ambition vs. Reality

Our research found that leaders want to move at AI speed, but their infrastructure is stuck in the past. Most leaders believe they can implement advanced security practices, yet most acknowledge that legacy systems limit their effectiveness.

Here are key findings from the report:

The AI Accelerator

Organizations that rely more heavily on AI-enabled tools report stronger resilience outcomes. They are not just faster; they are also more confident. These leaders are more likely to:

Additionally, the use of both security orchestration, automation, and response (SOAR) and observability solutions is strongly associated with more advanced AI risk controls. Organizations that invest in this operational maturity are better positioned to translate AI insights into measurable resilience improvements.

Modernization is the Prerequisite for Zero Trust

While confidence in zero trust is high, visibility gaps persist. Currently, only 43% of organizations use SOAR, and only 47% use observability tools. Just 39% receive real-time or near-real-time alerts.

Without automation, real-time visibility, and infrastructure automation, zero trust remains aspirational. Digital resilience depends on unified visibility, integrated data pipeline, and automation at scale.

Closing the Structural Gap

Infrastructure modernization must move in lockstep with AI adoption and zero trust strategies. The organizations that successfully close the structural gap share several characteristics, including:

Public and private sector organizations face systemic structural challenges, and those that unify visibility and operationalize AI will be better positioned to reduce risk, accelerate response, and strengthen resilience.

For more information, please visit the Splunk website.

About the Research

Foundry conducted an online survey, sponsored by Splunk, among 201 U.S.-based respondents in IT management and IT/data security management roles, with an even split between the public and private sectors. The average organization size was 5,684 employees. The survey was conducted in January 2026.

Related Articles

State of Security Research Details Essential Strategies for the Year Ahead
Security
3 Minute Read

State of Security Research Details Essential Strategies for the Year Ahead

Splunk's new research report, The State of Security 2022, shares a closer look into the challenges that security organizations face and the strategies they're relying on.
Visualising a Space of JA3 Signatures With Splunk
Security
2 Minute Read

Visualising a Space of JA3 Signatures With Splunk

One common misconception about machine learning methodologies is that they can completely remove the need for humans to understand the data they are working with. In reality, it can often place a greater burden on an analyst or engineer to ensure that their data meets the requirements, cleanliness and standardization assumed by the methodologies used. However, when the complexity of the data becomes significant, how is a human supposed to keep up? One methodology is to use ML to find ways to keep a human in the loop!
Behind the Code: The Layered Defense-Evasion of VIP Keylogger
Security
15 Minute Read

Behind the Code: The Layered Defense-Evasion of VIP Keylogger

The Splunk Threat Research Team analyzes the VIP Keylogger malware. Learn about its evasion tactics, including obfuscation and steganography, to improve your detection and threat-hunting strategies.