Skip to main content
HomeTopicsMiddle Market

Middle Market

Cybersecurity statistics about middle market

Showing 21-40 of 44 results

The number of middle market firms that reported carrying a cyber insurance policy reached a record-high of 82%, up from 76% a year ago.

RSM US LLP4/17/2025
Cyber insurance Cyber insurance policy

51% of respondents at middle market organisations said they are developing and maintaining a business continuity plan.

RSM US LLP4/17/2025
Business continuity planMiddle market

91% of respondents said they expect their middle market's organisation's cybersecurity budget to increase in the year ahead.

RSM US LLP4/17/2025
BudgetMiddle market

50% of respondents at middle market organisations are implementing disaster recovery plans for critical systems.

RSM US LLP4/17/2025
Disaster recovery planCritical system

35% of respondents in larger middle market companies reported at least one ransomware attack or request.

RSM US LLP4/17/2025
RansomwareMiddle market

47% of larger middle market firms reported that their top continuity strategy is leveraging technology to hunt for threats and respond to cyber events.

RSM US LLP4/17/2025
Continuity strategyLarge company

28% of respondents at middle market organisations said their existing security measures were partially successful against ransomware attacks.

RSM US LLP4/17/2025
RansomwareSecurity measures

97% of surveyed executives at middle market organisations reported feeling confident in their current security measures.

RSM US LLP4/17/2025
SecurityMiddle market

While most respondents from smaller middle market companies cited having 0-5 internal personnel focused on data security and privacy, 36% of larger middle market organisations reported having 6-10 employees and another 36% said they have 11-15 employees in this area.

RSM US LLP4/17/2025
StaffPersonnel

12% of respondents from smaller middle market firms (with revenue between $10 million to less than $50 million) reported a breach.

RSM US LLP4/17/2025
Data breachMiddle market

A smaller share of Canadian middle market firms indicate they don't have AI governance in place compared to U.S. respondents (5% versus 20%).

RSM US LLP4/17/2025
AI governanceCanada

Positive responses regarding familiarity with cyber insurance policy coverages among smaller middle market firms decreased to 51% from 66% last year.

RSM US LLP4/17/2025
Cyber insurance Cyber insurance policy

24% of respondents in larger middle market organisations (with revenue between $50 million to $1 billion) reported a breach.

RSM US LLP4/17/2025
Data breachMiddle market

On average, Canadian respondents at middle market organisations have larger cybersecurity teams, with 39% saying they have 16 or more employees, compared to 11% in the U.S..

RSM US LLP4/17/2025
StaffPersonnel

34% of smaller middle market companies noted that AI governance steps are not yet in place.

RSM US LLP4/17/2025
AI governanceMiddle market

15% of smaller middle market organisations reported at least one ransomware attack or request.

RSM US LLP4/17/2025
RansomwareMiddle market

Only 46% of larger and 37% of smaller middle market companies reported collaborating with external partners for coordinated resilience planning.

RSM US LLP4/17/2025
ResilienceMiddle market

Among middle market companies that experienced at least one ransomware attack, 31% said existing security measures were unsuccessful.

RSM US LLP4/17/2025
RansomwareSecurity measures

33% of respondents at middle market organisations indicated they have five or fewer data security and privacy employees.

RSM US LLP4/17/2025
Data security employeePrivacy employee

Familiarity with policy coverages dropped to 69% from 75% in the 2024 data at middle market organisations.

RSM US LLP4/17/2025
Cyber insurance Cyber insurance policy