Only 31% of organizations operate a centralized, highly automated security ecosystem.

Only 22% of organizations running AI today can identify within minutes which data the AI system used.

92% of organizations prioritizing risk identification before deployment experience a known-vulnerability incident in the past year.

Only 7% of organizations are truly AI-ready.

Only 17% of AI agent assigned defense credits are backed by public evidence — published research, inspectable code, or documented compliance.

96% of enterprises have no automated way to stop a hijacked AI agent.

Only 25% of organizations offer approved alternatives to unauthorized AI use.

91% of organizations that report being "very confident" in their AppSec strategy still experience a production incident that bypasses pre-production controls.

Across organizations in Europe, LinkedIn is the most commonly used personal app at 89%, followed by Google Drive at 84% and ChatGPT at 82%.

31% of people working in cybersecurity roles express moderate confidence in current cybersecurity upper leadership.

15% of people working in cybersecurity roles are only slightly confident in current cybersecurity upper leadership.

86% of people working in cybersecurity roles mark being transparent about decisions and actions as very important in a cybersecurity leader.

75% of people working in cybersecurity roles mark technical cybersecurity expertise as very important in a cybersecurity leader.

41% of people working in cybersecurity roles somewhat agree that previous leadership experience during a high-profile cybersecurity incident bolsters a leader's credibility.

35% of people working in cybersecurity roles strongly agree that previous leadership experience during a high-profile cybersecurity incident bolsters a leader's credibility.

18% of people working in cybersecurity roles prefer strategic and executive leadership experience over hands-on technical incident experience in a cybersecurity leader.

11% of people working in cybersecurity roles prefer hands-on technical incident experience over strategic and executive leadership experience in a cybersecurity leader.

Cybersecurity budgets among larger or IT-intensive organizations in the Nordics is approximately 2% of the IT budget.

Cybersecurity budgets among regulated, industrial, or OT-intensive environments in the Nordics is approximately 15% of the IT budget.

89% of users in Europe are interacting with AI applications that rely on user data for training.