54% of firms in the financial services industry still rely on spreadsheets or in-house systems to track security controls.

42% of employees expressed that password changes are too frequent in 2025, down from 51% in 2024, indicating a decrease in frustration over the past year.

CISOs reported a 15 percentage point increase in clarity regarding their cyberinsurance coverage for supply chain attacks in 2025.

93% of Chief Information Security Officers (CISOs) reported that their perception of Network Access Control (NAC) has improved over the past yea with 98% attributing this positive change to cloud-based NAC solutions.

19% of Chief Information Security Officers (CISOs) expect a significant increase in new tasks for their IT or security teams due to security risks or vulnerabilities related to AI.

67% of organizations expect to complete the shift from legacy VPNs to zero trust alternatives by next year, while 93% plan to do so by 2027.

24% of Chief Information Security Officers (CISOs) find it difficult to implement zero trust in 2025.

77% of Chief Information Security Officers (CISOs) expect that achieving zero trust will require significant updates or a complete overhaul in 2025, a sharp increase from 49% in 2024.

Among the CISOs without a formal AI strategy in 2025, 59% are currently building their AI strategy.

41% of Chief Information Security Officers (CISOs) reported improved productivity as a benefit of passwordless authentication.

52% of CISOs cited reduced risk of password reuse, phishing, and exploits as a benefit of passwordless authentication.

96% of Chief Information Security Officers (CISOs) reported that multi-factor authentication (MFA) still lags behind modern threats, showing little change from the previous year's figure of 100%.

CISOs reported a 16 percentage point increase in clarity regarding their cyberinsurance coverage for regulatory fines and penalties in 2025.

26% of Chief Information Security Officers (CISOs) reported clarity on coverage for phishing attacks in 2025, down from 41% in 2024.

In 2025, 87% of companies plan to increase their investment in Network Access Control (NAC), with 4% expecting to decrease their investment.

50% of employees reported that security policies interfere with or slow down their work.

96% of CISOs believe that multi-factor authentication (MFA) cannot keep up with evolving threats.

78% of Chief Information Security Officers (CISOs) expect AI to create moderate or significant increases in security workloads as they address new vulnerabilities.

42% of employees expressed that password changes are too frequent in 2025, down from 51% in 2023, indicating a decrease in frustration over the past year.

98% of Chief Information Security Officers (CISOs) identified cloud-based Network Access Control (NAC) as the top factor behind their improved perception of NAC.