Abstract
This study investigates the symbiotic relationships between Artificial Intelligence (AI), emerging
technologies, and cybersecurity within the South African context, focusing on how these relations can
be harnessed to bolster national security. The research adopted a qualitative methodological framework
underpinned by the theoretical framework of DII (diffusion of innovation, institutionalism, and
incrementalism). Through semi-structured interviews with experts from five critical sectors—
government and public sector, labour and workforce, academic and research community, financial and
economic sector, and private sector—this study illuminates the diffusion of AI into cybersecurity
practices across these domains.
The findings reveal significant variations in AI knowledge and application across these sectors, with
the private sector and academic community demonstrating advanced integration and innovative use of
AI in cybersecurity. In contrast, the government sector, while recognising the strategic importance of
AI, exhibits a more cautious and incremental approach due to regulatory challenges and concerns over
national security implications. The labour sector, representing the workforce, grapples with the dual
challenge of upskilling to meet the demands of AI-driven cybersecurity solutions while mitigating
potential job displacement. Empirical data underscores the necessity for a robust, forward-looking
policy framework to foster an inclusive environment where AI and emerging technologies can thrive,
echoing the institutionalist perspective of Acemoglu and Robinson. The study also highlights the
critical role of inclusive political institutions in facilitating innovation, particularly in democratic states
like South Africa, where private-sector-driven innovation can align with public-sector goals to enhance
national security.
However, the research also identifies limitations inherent in the study's methodological approach. The
exclusion of non-English literature and the heavy reliance on South African experts may limit the
generalisability of the findings to broader contexts. Access to critical, sensitive data related to national
cybersecurity posed significant challenges, restricting the depth of the analysis. The thesis advocates
for the development of a coordinated national strategy under the INCF and the EBPM frameworks that
bridges the gap between sectors, leveraging the strengths of each to create a resilient cybersecurity
ecosystem. The DII theoretical framework proves instrumental in understanding the diffusion process
and institutional dynamics, offering a nuanced perspective on the incremental yet transformative
potential of AI in enhancing cybersecurity in South Africa. Future research should extend these findings
to other sectors, such as healthcare and mining, to further explore the intersection of AI, emerging
technologies, and cybersecurity.