Cybersecurity is a core business enterprise risk. The attack surface continuously expands as AI, connected devices and cloud technologies become more and more prevalent.
Still, as PwC’s 2025 Global Digital Trust Insights shows, only
- 2% of enterprises have implemented cyber resilience actions across their organisation in all areas surveyed;
- under 50% of these organisations involve their CISOs to a large extent in strategic planning, board reporting and overseeing tech deployments; and
- less than 50% measure cyber risk effectively and only 15% measure the financial impact of cyber risks to a significant extent.
Compliance with cyber regulations are the driving force behind further increasing cybersecurity capabilities, with 96% of executives reporting that regulatory requirements have urged them to enlarge their security measures.
For the Insight report, PwC surveyed 4,042 business and technology executives between May and July 2024, from across 77 countries. You can download the full report here.