82% of security leaders report directly to the CEO in 2024, which is up from 47% in 2023.

67% of IT leaders agree that outbound email security doesn’t get as much attention beyond compliance, but it is the silent security killer

There was a 58% month-on-month increase in attacks targeting Asia in December, rising from 58 attacks in November to 92.

21% of CISOs revealed they had been pressured not to report a compliance issue.

83% of security leaders participate in board meetings "somewhat often" or "most of the time".

90% of CISOs have ownership of their organization’s security operations, architecture, governance, as well as digital risk and compliance.

64% of CISOs reveal that the current threat and regulatory environment make them concerned they’re not doing enough.

80% of executives agree they face pressure to reduce the cost of security.

Between 50% and 90% of CISOs identified other elements of business risk, such as disaster recovery, business risk, and third-party risk management, as well as broader security concerns such as product security, as falling under their remit.

The cyber skills gap has increased by 8% since 2024.

70% of CISOs indicated any raises they received were annual merit-based increases, which on average were 6%.

38% of leaders cite increased focus on growth / innovation - need for employees to get on with their jobs as their motivation for change in their security focus

The manufacturing industry was the most-targeted industry in R&DE incidents during 2024, accounting for approximately 17.7 percent of attacks globally.

82% of businesses recognize the need for better tools to manage how their processes intersect.

Real-time, interactive user coaching is used in 34% of organizations to control genAI data risk by empowering individuals to make informed decisions about AI risk in real time.

A significant minority of UK organisations, 20%, expect increases of over 50% in their cybersecurity budgets.

81% of organizations say that without process orchestration, achieving an autonomous enterprise will be a pipe dream.

76.1% of CISOs said integrations are most important when selecting tools/vendors to provide governance and continuous controls monitoring.

More than two thirds (67%) of IT leaders believe vendors are not innovating fast enough to keep up with emerging risks, leaving a critical gap in the market

44.2% of CISOs consider security and compliance a business enabler.