53% of enterprises report manual remediation as their top cost category for digital risk.

Large enterprises report false alarm rates approaching 44%.

Only 16% of enterprises have formal protection covering most or all employees.

Only 7% of enterprises describe their digital risk program as "leading."

Only 5% of enterprises ever trace brand impersonation back to a full campaign.

Nearly 30% of organizations rely on manual device health checks instead of fully automated monitoring systems.

84% of enterprises experienced material digital risk incidents in the past year.

97% of US-based physical security operations professionals are either currently using AI or actively evaluating it for security operations.

Nearly seven in ten enterprises describe their digital risk program as unaware, reactive, or still developing.

AI adoption reaches 75% among organizations that rate themselves at the highest maturity levels, compared to 43% among lower-maturity programs.

44% of enterprises say AI-generated attacks are already indistinguishable from legitimate activity.

53% of enterprises had an executive or employee impersonated in the past year.

96% of enterprises have no automated way to stop a hijacked AI agent.

43% of enterprises have no capability to build a threat profile around someone actively being targeted.

88% of enterprises believed AI could significantly enhance their security visibility in 2025.

90% of security leaders at enterprises expect to implement governance policies for citizen development by the end of 2026.

87% of enterprises have deployed AI and automation in security operations simultaneously.

92% of IT and cybersecurity decision-makers at enterprises say automation has met or exceeded operational expectations in security operations.

91% of enterprises experience workflow bottlenecks despite deploying AI and automation.

65% of organizations say their structured data is somewhat or fully prepared for AI use.