Over half of enterprises are already using Agentic AI.

71% of enterprises state it is critical to urgently develop the capability to distinguish between human and AI agents.

80% of enterprises reported an improved cybersecurity posture as a result of AI adoption.

40% of enterprises plan to increase cybersecurity staffing.

SOC 2 is one of the top 5 frameworks adopted by organizations.

35% of enterprises are adopting new frameworks.

The median enterprise maps its controls to about 2,700 requirements.

NIST Cybersecurity Framework (CSF) 2.0 is one of the top 5 frameworks adopted by organizations.

Enterprises conducting six or more risk assessments per year report stronger overall risk discipline and telemetry scores.

Fewer than 30% of enterprises feel prepared for upcoming AI governance requirements.

45% of enterprises are updating existing frameworks.

The median enterprise maps its controls to about seven frameworks.

The Secure Controls Framework (SCF) is one of the top 5 frameworks adopted by organizations.

ISO 27001 is one of the top 5 frameworks adopted by organizations.

The GDPR is one of the top 5 frameworks adopted by organizations.

37% of very large companies (10000+ employees) are concerned with the breadth of skills needed.

49% of very large companies (10000+ employees) are concerned with the variety of attacks.

47% of very large companies (10000+ employees) are concerned with privacy.

42% of very large companies (10000+ employees) are concerned with nation-state actors.

46% of very large companies (10000+ employees) are concerned with the scale of attacks.