France Adapts Cybersecurity Landscape with AI-Powered Defense Amidst Stricter Regulations and Growing Threats
A groundbreaking report from technology consultancy firm Information Services Group (ISG) highlights the evolving French cybersecurity landscape, as growing AI threats and stricter regulations prompt businesses to reassess their security strategies.
With escalating security expenditures, numerous French enterprises are in need of expert advice to establish strategic priorities and tackle their security challenges effectively.
According to the 2025 ISG Provider Lens Cybersecurity – Services and Solutions report, businesses across France are navigating a more intricate, multi-layered security environment, with many adopting AI-enhanced defense strategies in response to new regulations, cloud adoption, financial constraints, and a shortage of skilled workers.
Julien Escribe, partner and managing director at ISG, commented, “The approach companies in France take towards securing services is evolving significantly.” He further explained that with expanding security budgets, enterprises require guidance and insight to set appropriate priorities and address security concerns effectively.
The report reveals a shift towards comprehensive security solutions rather than relying on disparate tools for businesses. Organizations are looking for service providers capable of augmenting their security teams, particularly in instances where companies are transitioning to multicloud and cloud topologies. These transitions often bring challenges related to integration, visibility, and management, the company notes.
Businesses struggle to maintain oversight of applications, and as a result, employ solutions like secure access service edge (SASE), which blends network security and connectivity into a unified service.
The report identifies that French organizations are prioritizing integrated security platforms for a holistic view of potential threats and centralized control over their defenses. Due to financial pressures and an ongoing dearth of cybersecurity talent, many businesses continue to utilize technical security service (TSS) providers for support, centralized platforms, and automation.
ISG predicts that French enterprises will need to incorporate governance, risk, and compliance (GRC) policies into their security strategies, as EU regulations such as the NIS2 directive and AI Act become national law in France. Over 15,000 French businesses are now subject to additional compliance, the report states.
The paper indicates that malicious actors are increasingly leveraging AI in cyberattacks, creating new challenges for detection and response. In response, companies turn to security service providers that employ genAI and machine learning (ML) themselves. Clients are investing more in AI-driven detection, employee training, and automated responses.
Benoît Scheuber, a principal consultant and security analyst at ISG, said, “The cybersecurity landscape is being transformed by AI, compelling companies to seek providers capable of integrating tools that increase efficiency.” He further elaborated, “Clients are seeking providers that can seamlessly integrate the best products into a unified platform for operational efficiency.”
