Key Findings
29% of organizations had to delay a product or service launch as a result of security incidents in the past year.
32% of organizations plan to use AI within the next 12 months for intrusion detection in 2025.
25% of organizations reported that company intellectual property was compromised in the past year due to security incidents.
54% of organizations reported that they already use AI for SIEM data management in 2025.
75% of internal Security Operations Center (SOC) teams reported a skills shortage in intrusion detection as of 2025, which poses a risk to proactive threat management.
35% of security leaders reported a significant increase in the time from detecting an attack to resolution over the past 12 months, emphasizing the growing complexity of cybersecurity incidents.
78% of organizations experienced endpoint-related cyber incidents, such as those involving laptops or PCs, in the past 12 months, according to the 2025 Security Operations Trends Report.
77% of internal Security Operations Center (SOC) teams reported a skills shortage in penetration testing as of 2025, indicating a significant gap in essential cybersecurity capabilities.
46% of organizations plan to use AI within the next 12 months for risk assessment in 2025.
61% of organizations experienced cloud infrastructure or platform-related cyber incidents in the past 12 months, according to the 2025 Security Operations Trends Report.
75% of organizations reported experiencing skills shortages in intrusion detection, while 72% reported shortages in incident response in 2025, according to the 2025 Security Operations Trends Report.
43% of security leaders reported experiencing an incident related to their own AI tools in 2025, despite 78% stating that concerns about AI leading to a wave of novel attacks are exaggerated.
Security leaders estimated that cyber incidents cost their organizations an average of $3.7 million in 2025, with 46% experiencing an outage or disruption to service as a result of these attacks.
Organizations used an average of 65 security tools in 2025, a decrease from 91 tools in 2024, but 73% of security leaders indicated that the time from detecting an attack to resolution has increased.
In the past year, 46% of organizations suffered an outage or disruption to service due to security incidents.
54% of security leaders reported that increasing budgets alone does not guarantee protection against cyber risks, highlighting the complexity of the issue.
23% of organizations had to take disciplinary action against an employee due to security incidents in the past year.
80% of security leaders stated they are spending more than ever on security, yet breaches and threats continue to escalate.
73% of security leaders indicated that the time from detecting an attack to resolution has increased over the past 12 months, reflecting challenges in incident response.
40% of organizations reported that customer and/or employee data was compromised, stolen, or held to ransom in the past year.
Security budgets increased by 12% in the past 12 months across organizations, indicating a growing investment in cybersecurity measures.
83% of security leaders believe that today’s attackers log in rather than break in, making them harder to stop than ever, according to the 2025 Security Operations Trends Report.
57% of organizations experienced cloud application or SaaS-related cyber incidents in the past 12 months, according to the 2025 Security Operations Trends Report.
82% of organizations experienced email-related cyber incidents in the past 12 months, according to the 2025 Security Operations Trends Report.
79% of organizations experienced identity or user account-related cyber incidents in the past 12 months, according to the 2025 Security Operations Trends Report.
63% of internal Security Operations Center (SOC) teams reported a skills shortage in detection analytics as of 2025, which is essential for identifying potential threats.
72% of internal Security Operations Center (SOC) teams reported a skills shortage in incident response as of 2025, affecting their ability to effectively manage security incidents.
70% of internal Security Operations Center (SOC) teams reported a skills shortage in data analysis as of 2025, which is crucial for informed decision-making in cybersecurity.
78% of internal Security Operations Center (SOC) teams reported a skills shortage in network security as of 2025, highlighting a critical area of concern for cybersecurity effectiveness.
66% of internal Security Operations Center (SOC) teams reported a skills shortage in cyber forensics as of 2025, which is vital for investigating security breaches.
70% of internal Security Operations Center (SOC) teams reported a skills shortage in Security Information and Event Management (SIEM) data management as of 2025, impacting their operational efficiency.
60% of internal Security Operations Center (SOC) teams reported a skills shortage in threat hunting as of 2025, which is critical for proactive cybersecurity measures.
55% of internal Security Operations Center (SOC) teams reported a skills shortage in cloud security as of 2025, reflecting the growing importance of securing cloud environments.
The time to investigate incidents and threats was recorded at 37% in 2025, reflecting the efficiency of response protocols.
The mean time to resolution for threats was 41% in 2025, indicating a significant duration for addressing security issues.
39% of organizations reported that they already use AI for risk assessment in 2025.
28% of organizations plan to use AI within the next 12 months for detection analytics in 2025.
38% of organizations plan to use AI within the next 12 months for triaging alerts in 2025.
65% of organizations reported that they already use AI for detection analytics in 2025.
80% of security leaders reported that without AI, defenders are overwhelmed by noise while adversaries can easily bypass defenses in 2025.
46% of organizations reported that they already use AI for triaging alerts in 2025.
36% of organizations reported that they already use AI for security incident reporting in 2025.
38% of organizations plan to use AI within the next 12 months for incident response in 2025.
The attack surface has expanded by 41% in the past 12 months, indicating a significant increase in potential vulnerabilities.
Organizations faced an average cost of $3.7 million due to successful cyber attacks in the past year, according to the 2025 Security Operations Trends Report.
59% of organizations reported that they already use AI for intrusion detection in 2025.
44% of organizations incurred financial costs, such as a ransom demand or fine, due to security incidents in the past year.
40% of organizations reported that they already use AI for threat hunting in 2025.