26% of SMBs do not conduct regular penetration tests or security assessments.

42% of leaders at U.S. organizations are making identity and access management a top budget priority over the next two to three years.

41% of SMBs have endpoint protection.

3% of SMB owners faced severe, lasting damage following a cyber attack.

27% of SMBs lack cyber insurance.

51% of U.S.-based cybersecurity decision-makers reported that their boards are asking for foundational security metrics.

36% of U.S.-based cybersecurity decision-makers identified threat detection and response as one of their top cybersecurity priorities for 2026.

64% of organizations prioritize Managed Detection and Response (MDR) as a top area of time and financial investment.

53% of U.S.-based cybersecurity decision-makers manage and monitor cybersecurity infrastructure using a combination of managed and in-house services.

51% of cybersecurity professionals cited mobile devices as the biggest blind spot in visibility for modern work.

60% of organizations prioritize security architecture as a top area of time and financial investment.

25% of U.S.-based cybersecurity decision-makers ranked AI enablement among their top cybersecurity priorities for 2026.

44% of U.S.-based cybersecurity decision-makers ranked protecting sensitive data among their top two cybersecurity priorities for 2026.

The United States accounted for 54% of all IoT attack activity.

13% of CISOs oversee 50 or more security tools.

90% of CISOs say their role may be at risk to some degree if a breach were to occur.

78% of CISOs lack a formal strategy for handling AI identities in a zero trust security architecture in 2025.

33% of CISOs rank external threats as their number-one stressor.

54% of CISOs lack standardized, business-relevant metrics.

50% of higher education institutions are monitoring transactions in real-time to combat fraud.