43% of security teams use AI for threat intelligence correlation.

48% of security professionals say IT teams do not respond urgently to cybersecurity concerns.

43% of security professionals report high stress.

Organizations that use an integrated, automated approach to risk management report a 27% breach rate in 2025.

97% of IT, security, risk, and compliance professionals report using AI to streamline their work.

77% of organizations have been targeted by deepfake attacks.

58% of organizations that experienced a breach anticipate spending more time on IT risk management and compliance in 2026.

79% of security professionals say stress harms their physical or mental health.

Security professionals are 2.4 times more likely to believe defenders use AI as effectively as, or more effectively than, threat actors.

60% of security professionals use business impact analysis to inform their risk prioritization.

77% of security professionals express some level of comfort with deploying agentic systems and allowing them to act without human review.

56% of IT, security, risk, and compliance professionals use a common controls framework (CCF) to streamline GRC processes.

53% of security teams utilize AI for cloud security policy enforcement.

44% of security teams use AI for incident response workflows.

27% of organizations are very prepared for synthetic digital content threats.

86% of IT, security, risk, and compliance professionals have a centralized team to manage GRC.

42% of security teams use AI for vulnerability response and remediation.

Organizations that manage risk ad hoc or only after a negative event report a 50% breach rate in 2025.

51% of organizations have faced sophisticated, personalized phishing emails powered by deepfake technology.

87% of security professionals say integrating agentic AI is a priority for their teams.