CompTIA

46% of very large companies (10000+ employees) are concerned with the scale of attacks.

The feeling that the current approach is 'good enough' is the second-greatest challenge in improving the execution of a strong cybersecurity strategy for business leaders.

37% of organizations say their AI priority within cybersecurity is improving internal efforts.

48% of companies are considering certifying current employees for skill improvement.

43% of small companies (<100 employees) are concerned with the emergence of generative AI.

37% of companies have average capability in securing data in cloud providers.

45% of elements involved in risk analysis are related to use of cloud computing.

46% of companies are considering expanding the use of third parties for skill improvement.

38% of elements involved in risk analysis are related to data ownership.

50% of respondents surveyed have expert-level skill in network/infrastructure security.

47% of respondents surveyed have expert-level skill in application security.

38% of large companies (500-9999 employees) are concerned with compliance with regulations.

46% of respondents surveyed need significant skill improvement in network/infrastructure security.

38% of companies have average capability in creating comprehensive data sets.

57% of companies have high capability in creating comprehensive data sets.

47% of respondents surveyed have expert-level skill in data analysis.

36% of firms say they now have a moderate focus on OT.

16% of risks identified through analysis are viewed as organizational concerns.

41% of companies are improving board of directors visibility to improve the effectiveness of their cybersecurity program.

6% of companies have below average capability in mining data.

31% of organizations say their AI priority within cybersecurity is prioritizing defending new threats.

36% of organizations surveyed believe that networking protocols used by OT systems must be understood better to properly secure OT.

38% of organizations surveyed believe that total costs of digitizing physical infrastructure must be understood better to properly secure OT.

33% of organizations reported a lack of buy-in from senior leadership in using AI for cybersecurity.

44% of elements involved in risk analysis are related to operational technology (OT).

Nearly three in four companies report that the impact of cyber incidents in the past year has been severe or moderate.

46% of companies place a higher priority on incident response.

58% of firms say they have a high focus on OT.

37% of companies have average capability in securing data on endpoints.

70% of firms place themselves in an early education phase or a stage of testing AI implementation on low-priority systems.

52% of companies rate themselves as having high capability in AI.

38% of organizations surveyed believe that implementing access control, including remote access, must be understood better to properly secure OT.

58% of companies have high capability in securing data in cloud providers.

59% of companies have high capability in securing data on endpoints.

59% of companies have high capability in securing data on networks.

42% of companies have average capability in mining data.

40% of companies have average capability in capturing data from all sources.

Three of the top seven elements involved in incident response involve some sort of purchase.

42% of companies are improving senior executive visibility to improve the effectiveness of their cybersecurity program.

46% of companies face integrating with business initiatives as a challenge in retaining cybersecurity talent.

43% of organizations are in the early education/experiment phase of AI adoption.

70% of companies are in early stages of AI adoption.

52% of companies have high capability in mining data.

There are 514,000 U.S.-based job openings with cybersecurity-related skills.

49% of large companies (500-9999 employees) are concerned with privacy.

46% of small companies (<100 employees) are concerned with privacy.

41% of medium companies (100-499 employees) are concerned with privacy.

47% of very large companies (10000+ employees) are concerned with privacy.

41% of small companies (<100 employees) are concerned with their reliance on data.

43% of medium companies (100-499 employees) are concerned with their reliance on data.