Pentera

1% of enterprises have a dedicated AI security budget.

21% of enterprises plan to introduce a dedicated AI security budget.

50% of CISOs cite lack of internal expertise as a top AI security challenge.

36% of CISOs report insufficient AI-specific security tools as a top challenge.

58% of CISOs say AI is influencing their security stack consolidation strategy.

3% of CISOs are actively consolidating their security stack due to AI.

11% of CISOs are consolidating their security stack for reasons unrelated to AI.

44% of CISOs acknowledge their AI security posture lags behind the rest of their security program.

48% of CISOs list limited visibility into AI usage as a top AI security challenge.

67% of CISOs report limited visibility into how AI is used across their environment.

75% of CISOs report their enterprises rely on extending controls originally designed for other attack surfaces to cover AI-driven workflows and infrastructure.

11% of enterprise CISOs have security tools specifically designed to protect AI systems.

78% of enterprises fund AI security through existing security budgets.

Pentesting accounts for 11% of the total IT security budgets of U.S. enterprises.

67% of enterprises reported a breach in the past 24 months.

U.S. enterprises allocate an average of $187,000 annually to pentesting.

50% of CISOs identify software-based testing as a primary method for uncovering exploitable security gaps within their organizations.

28% of CISOs experienced financial loss following a breach.

36% of CISOs reported unplanned downtime following a breach.

30% of CISOs cited data exposure following a breach.

59% of enterprises have adopted at least one new security solution at the request of their cyber insurance provider.

96% of organizations are making changes to their IT environment at least quarterly

The average total IT security budget for U.S. enterprises is $1.77 million.

76% of CISOs reported a significant impact following a breach.