Skip to main content

The CISO Report

The latest on the CISO, from their expanded influence in the boardroom to generative AI’s potential to transform cyber defense. 


86% of CISOs claim their biggest responsibility is to ensure their governing body or board sees value in security investments.


CISOs are officially in the C⁠⁠⁠-⁠⁠suite

Almost half (47%) of CISOs report directly to the chief executive officer (CEO). How do they feel about the evolution of their role?

  • 82% would consider becoming a whistleblower if their organization was willfully ignoring security best practices and compliance mandates that put the business at risk.
  • 84% fear being personally liable for cybersecurity incidents.
  • 84% say boards equate strong security with regulatory compliance rather than security best practices and success metrics.


Generative AI will transform cyber defense

Although 70% of CISOs fear generative AI will give cyberattackers the upper hand, they are also excited about its potential to bolster cyber defense.


  • 35% of CISOs are already using AI for security applications.
  • 61% will likely use it in the next 12 months.
  • 86% believe generative AI will alleviate security skills gaps and talent shortages.

39% of CISOs plan to train teams to better understand threats posed by generative AI.


One in 11 paid $1 million or more in ransom.


Ransomware continues to fell many

Ninety-six percent of respondents fell victim to a ransomware attack in the past year. And most of them paid up.

  • 83% paid the ransom in the wake of an attack, either directly or through a third party.
  • More than half of respondents paid more than $100,000 in ransom.
  • 52% experienced a ransomware attack that significantly impacted business systems and operations.


Budgets are increasing — but not quickly enough

While 93% of organizations expect to increase cybersecurity spending over the next year, CISOs worry it won’t be enough.

  • 85% are worried about macroeconomic uncertainty and its potential impact on their teams.
  • 31% reveal that projects have been delayed or eliminated due to lack of funding.
  • 80% saw an increase in the number of threats as the economy declined.

Only 35% of CISOs say their boards allocate adequate cybersecurity budgets.

Read The CISO Report to learn more about key trends, threats and strategies for today’s security leaders.