In 2025, 57% of CISOs reported that their organizations took more than 4.5 days on average for full remediation and recovery after a cyber incident.

In 2025, not a single Chief Information Security Officer (CISO) reported being able to recover from a cyber incident within a day.

72% of CISOs agreed that their role has evolved to include leading their organization’s ability to recover continuity following a cyberattack or security incident.

In 2025, 19% of CISOs indicated that recovery efforts from cyber incidents extended as long as two weeks.

89% of schools experienced at least one cyber incident in the past year, primarily phishing, unauthorized access, and malware.

Cyberespionage campaigns constituted 2.5% of all reported cyber incidents in the EU in 2024.

Cybercrime operators accounted for approximately 16% of cyber incidents in the EU in 2024.

60% of healthcare organizations reported operational disruptions due to cyber incidents.

Two-thirds of CISOs report feeling burned out weekly or daily.

87% of CISOs say pressure in their role has increased over the past year.

56% of CISOs say their security tools don’t integrate fully.

40% of CISOs considered leaving their role altogether.

82% of CISOs feel confident quantifying risk.

57% of CISOs report that half or fewer of their security tools deliver measurable Return on Investment (ROI).

39% of CISOs say they often feel blamed, even when incidents fall outside their direct control.

82% of CISOs say they are under pressure from executives or boards to reduce staff using AI.

59% of CISOs cite agentic AI as their leading near-term threat.

44% of CISOs rank board or executive expectations as their number-one stressor.

17% of CISOs say they always feel personally blamed for security incidents, regardless of the root cause.

Nearly 20% of recent incidents reported by CISOs were already AI-related.