How would AI change Information Security / Cyber Security in next 1 to 3 years?

First, AI has already and will continue to empower adversaries, helping them target phising into automated spear-phising. It already powers meta-attacks based on iterative learning: trying anything and gradually understanding what type works. It helps generate fake content for have more realistic large scale fake profile.

AI has helped defensive capacity by identifying patterns in attacks but this is rudimentary and will continue to play catch-up for the years to come. A change in paradigm will help, by trying to think of adversaries like learning machines and building dedicated AI-focused honey pots to learn how they learn.

One good example is creating false identities to bypass facial recognition tools. This is quite an intensive domain of research and is also very facsinating because one can visualize what AI can do !