Start with needs, not AI hype

A security conference in Las Vegas just delivered a useful reality check on artificial intelligence. At ISC West 2026, panelists said the companies getting value from artificial intelligence are not starting with the question “what can artificial intelligence do,” but with a narrower one: “what problem do we need to solve?” (securityinfowatch.com) That sounds simple, but it cuts against how artificial intelligence has been sold for the past two years. Vendors have pushed broad platform stories, while buyers have had to figure out whether any of those promises actually fit a daily workflow, a staffing shortage, or a compliance requirement. (securityinfowatch.com 1) (securityinfowatch.com 2) ISC West is a good place to hear that shift out loud because the event is one of the biggest security trade shows in the United States. The 2026 show ran from March 23 to March 27 at the Venetian Expo in Las Vegas, and SecurityInfoWatch reported that this year’s event drew about 29,000 attendees. (securityinfowatch.com 1) (securityinfowatch.com 2) The timing matters because artificial intelligence was everywhere at the show. SecurityInfoWatch’s pre-show coverage said the conversation had started to mature from what artificial intelligence might do in theory to what it can do “reliably, repeatably, and at scale.” (securityinfowatch.com) That is a different standard from the one that dominated many early product pitches. A flashy demo can impress in a booth, but buyers eventually want to know where a tool sits in the stack, what data it needs, how often it fails, and whether a human still has to check the result before acting on it. (securityinfowatch.com 1) (securityinfowatch.com 2) That is why the panel’s message travels well beyond physical security. In insurance claims and Special Investigation Unit work, buyers are often less interested in a giant “artificial intelligence platform” than in a bounded tool that helps with one step, like triage, anomaly detection, document review, or referral support. (guidewire.com) (guidewire.com) (sas.com) There is a practical reason for that preference. Claims organizations already run on defined handoffs, regulated decisions, documented files, and service-level targets, so a tool that speeds one decision point is easier to test than a tool that promises to remake the whole department. (guidewire.com) (guidewire.com) Guidewire’s claims materials make that pattern clear in plain operational terms. The company describes claims management as a lifecycle from intake to closure, and it points to centralized data and automation as a way to reduce errors and support more confident decisions rather than replace the process itself. (guidewire.com) Its HazardHub material shows the same workflow-first logic at a more specific level. The product adds peril context and event validation at first notice of loss, then helps route straightforward claims faster while flagging questionable ones for senior adjusters or the Special Investigation Unit. (guidewire.com) That is the model many buyers trust right now: software that narrows a queue, scores a file, or surfaces evidence, with a human handler still making the consequential call. SAS describes its insurance fraud offering in similar terms, emphasizing detection, investigation support, and workflow streamlining rather than autonomous claim decisions. (sas.com) The same caution appears in fraud-focused vendor language. A Guidewire Marketplace document for Shift says its claims fraud product is built to help claims handlers and Special Investigation Unit teams identify and investigate suspicious claims faster, which is a support role inside an existing process, not a promise to run the process end to end. (marketplace.guidewire.com) (marketplace.guidewire.com) What the ISC West panel really did was give buyers a cleaner filter. If a product starts with a concrete bottleneck, names the user, fits a known handoff, and leaves an auditable trail, it has a better chance of surviving procurement than a broad claim about transformation. (securityinfowatch.com) (securityinfowatch.com) That does not mean ambition disappears. It means the path to adoption is getting narrower, more measurable, and more honest: one workflow, one decision step, one review loop at a time. (securityinfowatch.com) (securityinfowatch.com)