Skip to main content
shared header v2
Push Down Banner V1 Analytics Patch, remove after implementing V2 (S9 or S10)
Global nav V2 patch, remove after adding the mobile languages fix in the codebase (S7 or S8)

The CISO Report

The latest on the CISO, from their expanded influence in the boardroom to generative AI’s potential to transform cyber defense. 


86% of CISOs claim their biggest responsibility is to ensure their governing body or board sees value in security investments.


CISOs are officially in the C⁠⁠⁠-⁠⁠suite

Almost half (47%) of CISOs report directly to the chief executive officer (CEO). How do they feel about the evolution of their role?

  • 82% would consider becoming a whistleblower if their organization was willfully ignoring security best practices and compliance mandates that put the business at risk.
  • 84% fear being personally liable for cybersecurity incidents.
  • 84% say boards equate strong security with regulatory compliance rather than security best practices and success metrics.


Generative AI will transform cyber defense

Although 70% of CISOs fear generative AI will give cyberattackers the upper hand, they are also excited about its potential to bolster cyber defense.


  • 35% of CISOs are already using AI for security applications.
  • 61% will likely use it in the next 12 months.
  • 86% believe generative AI will alleviate security skills gaps and talent shortages.

39% of CISOs plan to train teams to better understand threats posed by generative AI.


One in 11 paid $1 million or more in ransom.


Ransomware continues to fell many

Ninety-six percent of respondents fell victim to a ransomware attack in the past year. And most of them paid up.

  • 83% paid the ransom in the wake of an attack, either directly or through a third party.
  • More than half of respondents paid more than $100,000 in ransom.
  • 52% experienced a ransomware attack that significantly impacted business systems and operations.


Budgets are increasing — but not quickly enough

While 93% of organizations expect to increase cybersecurity spending over the next year, CISOs worry it won’t be enough.

  • 85% are worried about macroeconomic uncertainty and its potential impact on their teams.
  • 31% reveal that projects have been delayed or eliminated due to lack of funding.
  • 80% saw an increase in the number of threats as the economy declined.

Only 35% of CISOs say their boards allocate adequate cybersecurity budgets.

Read The CISO Report to learn more about key trends, threats and strategies for today’s security leaders.