Skip to main content

CYBERSTATS

Security Intelligence

Back to Home

58% of CISOs and cybersecurity executives say it is difficult to articulate their value beyond risk mitigation.

EY
May 28, 2025
CISOCybersecurity benefitsCybersecurity value

58% of CISOs and cybersecurity executives say it is difficult to articulate their value beyond risk mitigation. — This cybersecurity statistic was published by EY in May 2025. It covers topics including CISO, Cybersecurity benefits, Cybersecurity value. The original data appears in How can cybersecurity go beyond value protection to value creation?. For the full methodology and detailed findings, refer to the original report.

Source

View Original Report

Published on 5/28/2025

Share or Copy this stat

Frequently Asked Questions

What does this statistic say?

58% of CISOs and cybersecurity executives say it is difficult to articulate their value beyond risk mitigation. This data was published by EY and covers CISO, Cybersecurity benefits, Cybersecurity value.

Where does this data come from?

This statistic comes from How can cybersecurity go beyond value protection to value creation?, published by EY on May 28, 2025. You can view the original report at https://www.ey.com/en_gl/insights/consulting/how-can-cybersecurity-go-beyond-value-protection-to-value-creation.

What cybersecurity topics does this cover?

This statistic relates to CISO, Cybersecurity benefits, Cybersecurity value. Browse more statistics on CISO or from EY.

Want More Statistics Like This?

Get the latest cybersecurity stats delivered to your inbox every week

Related Statistics

72% of CISOs agreed that their role has evolved to include leading their organization’s ability to recover continuity following a cyberattack or security incident.

Absolute Security1/13/2026
Incident RecoveryCyber IncidentCISO

67% of CISOs stated they are the primary executive responsible for ensuring Cyber Resilience within their organization.

Absolute Security1/13/2026
Cyber ResilienceCISOUK

In 2025, 83% of CISOs reported that Cyber Resilience was more critical for their organization than traditional cybersecurity measures, compared to 90% in the previous year.

Absolute Security1/13/2026
Cyber ResilienceTraditional Cybersecurity MeasuresCISO

In 2025, 98% of organizations reported spending between $1 and $5 million to recover from cyber incidents, with the average recovery cost per incident being $2.5 million.

Absolute Security1/13/2026
Incident RecoveryRecovery CostsCISO

47% of CISOs report being completely confident that AI-powered security tools can effectively defend against autonomous, AI-driven cyberattacks.

Trellix12/13/2025
CISOAI DefenseAI-driven Cyberattacks

94% of CISOs agree that emerging threats are forcing them to rethink and reprioritize their cybersecurity and infrastructure strategy.

Trellix12/13/2025
CISOEmerging ThreatsInfrastructure Strategy

Browse by Topic

CISOCybersecurity benefitsCybersecurity valueMore from EY

Stay Ahead of Cyber Threats

Join 1,000+ security professionals getting weekly insights