Key Findings

  • The great majority of CISOs see the threat landscape as worse than a year ago; 75% confirm being hit during that period at least once but as many as five times by a cyber attack that caused material damage.
  • Ransomware, phishing/spear-phishing, and supply chain attacks stand atop the list of threats that concern CISOs the most.
  • CISOs say implementing or enhancing a Zero Trust model is the top security priority for the next 12 months. Nearly 79% indicate they are already underway with implementation, while another 18% are actively planning for it.
  • The impacts of cyber attacks that cause CISOs the most concern are exposure of PII or other sensitive data, and downtime for critical infrastructure or essential services.