Only 24% of organisations are spending significantly more on proactive measures (e.g., monitoring, testing, controls) than reactive measures (e.g., incident response, fines, recovery)—which is considered the ideal spend ratio.
Only 24% of organisations are spending significantly more on proactive measures (e.g., monitoring, testing, controls) than reactive measures (e.g., incident response, fines, recovery)—which is considered the ideal spend ratio. — This cybersecurity statistic was published by pwc in October 2025. It covers topics including Investment, Proactive, Resilience. The original data appears in New world, new rules: Cybersecurity in an era of uncertainty. For the full methodology and detailed findings, refer to the original report.
Share or Copy this stat
Frequently Asked Questions
What does this statistic say?
Only 24% of organisations are spending significantly more on proactive measures (e.g., monitoring, testing, controls) than reactive measures (e.g., incident response, fines, recovery)—which is considered the ideal spend ratio. This data was published by pwc and covers Investment, Proactive, Resilience.
Where does this data come from?
This statistic comes from New world, new rules: Cybersecurity in an era of uncertainty, published by pwc on October 1, 2025. You can view the original report at https://www.pwc.com/us/en/services/consulting/cybersecurity-risk-regulatory/library/global-digital-trust-insights.html.
What cybersecurity topics does this cover?
This statistic relates to Investment, Proactive, Resilience. Browse more statistics on Investment or from pwc.