58% of organizations that experienced a breach anticipate spending more time on IT risk management and compliance in 2026.

84% of organizations doubt they can pass a compliance audit focused on agent behavior or access controls.

Security teams rate AI as highly effective for threat detection (61%), identity and access monitoring (56%), and compliance and policy writing (55%).

35% of security professionals identify security and compliance concerns as obstacles to scaling AI and automation.

35% of respondents cite interpreting and operationalizing complex regulatory requirements as their biggest challenge.

76% of leaders rated compliance pressures around data sovereignty as extremely or moderately important.

14% of Defense Industrial Base members are considering using a cloud service provider for Cybersecurity Maturity Model Certification compliance in the future.

60% of Defense Industrial Base members reported an increase in training staff on cybersecurity since last year, up from 37% .

53% of Defense Industrial Base members are currently using a cloud service provider to minimize their Cybersecurity Maturity Model Certification scope.

26% of Defense Industrial Base members reported spending between $100,000 and $250,000 on Cybersecurity Maturity Model Certification preparation as of November 2025.

31% of Defense Industrial Base members reported spending more than $250,000 on Cybersecurity Maturity Model Certification preparation as of November 2025.

47% of Defense Industrial Base members have received flow-down requests from prime contractors regarding Cybersecurity Maturity Model Certification.

54% of Defense Industrial Base members reported starting their Cybersecurity Maturity Model Certification journey with a strong implementation of NIST 800-171 standards and DFARS controls.

68% of Defense Industrial Base members reported that preparing for Cybersecurity Maturity Model Certification has taken them over a year as of November 2025.

37% of Defense Industrial Base members are not scheduled for a Cybersecurity Maturity Model Certification assessment or are unsure of their next steps.

42% of U.S. financial services executives identified staying current with evolving regulations as their top compliance challenge.

64% of financial services organizations cite compliance requirements as important security drivers.

61% of healthcare organizations cite compliance requirements as important security drivers.

50% of firms in the financial services industry are still operating on outdated or on-premise infrastructure, which fails to meet modern transparency and documentation requirements.

45% of firms in the financial services sector prioritize automated evidence collection and document management for enhancing audit readiness and control visibility.