CSO, the leading source for breaking news, analysis, and research on security and risk management, released the 2024 Security Priorities Study. Now in its eighth year, the study provides valuable insights into security department trends, including increasing investment in AI-enabled security technologies, the evolving role of security leaders within the c-suite and Boards of Directors, and the growing complexity and challenges that hinder security goal achievement.
Cyber Technology Insights: AuthenticID Launches Identity Platform: AuthenticID360
As security incidents rise globally, security leaders face increasing responsibilities and complexities. They are tasked with researching, learning, and implementing numerous solutions to safeguard their organizations, while also managing the vast amounts of data these tools generate. Notably, three-quarters (75%) of security decision-makers report that determining which tools and solutions are the best fit for their company is becoming more complex, up from 69% last year. This growing complexity may be contributing to uncertainty, as one-third of security leaders were unsure of the causes behind their organization’s data security incidents in the past 12 months.
Explore the 2024 Security Priorities for a deeper understanding of how security leaders plan to tackle these challenges.
Security investment plans driven by focused priorities
Given the constant lingering threat of cyberattacks and the strong focus on cybersecurity awareness, it is no surprise that security budgets are expected to either increase (43%) or remain the same (55%) over the next 12 months. Security budget expectations vary by company size, with 52% of enterprise organizations (those with 1,000 or more employees) anticipating an increase. compared to 35% of SMBs (those with less than 1,000 employees). Meanwhile, a majority of SMB security decision-makers (63%) anticipate that their budget will remain the same compared to 46% of enterprise organizations.
With steady or growing budget, security leaders aim to strengthen the protection of confidential and sensitive data, upgrade IT and data security to enhance corporate resilience, secure cloud environments, improve security awareness through end-user training, and streamline security infrastructure. However, many security decision-makers may need to outsource certain functions or rely on vendors for additional support, as competing priorities are the second most significant challenge to achieving their security goals.
Strong leadership required to push security initiatives
Businesses are increasingly recognizing the critical role that trusted and experienced security leaders play in driving successful, sustainable initiatives. The majority of organizations surveyed (67%) have a dedicated security executive, whether it be a top security executive, CSO, or CISO. notably, the presence of CISOs rose five percentage points to 46% this year, while CSOs increased from 20% to 29% this year. Meanwhile, the number of organizations with a top security executive without a chief title decreased from 14% to 7% this year, signaling that security leaders are gaining a more prominent role within the c-suite.
The Board of Directors are also becoming more involved in security matters. This year’s research reveals that 51% of security executives have a direct reporting line to the CEO, and more than a quarter (28%) say that they report directly to the Board. Engagement with the Board is on the rise, with nearly two-thirds (63%) of security leaders reporting interactions at least once a month, up significantly from 48% last year. Most notably, the number of executives meeting with the Board multiple times a month increased from 26% to 39% this year, while quarterly meetings dropped from 30% to 21%.
Embracing AI-enabled security tools
When it comes to AI-enabled security technologies, only 13% of survey respondents expressed no interest. The majority are actively exploring these tools with 39% conducting research, 23% piloting, and 25% having already implemented or upgraded them. End users are reaping the benefits, including reduced employee workload, faster threat remediation, and quicker identification of unknown threats. The proportion of organizations realizing benefits from AI-enabled security tools surged from 72% last year to 98% this year.
These findings indicate a strong opportunity for AI-enabled security vendors. Security leaders are eager to capitalize on AI benefits, but need proper tools and guidance from both existing and potential new vendors to ensure AI success. In evaluating AI-enabled security solutions, decision-makers consider factors such as business value, security incident record and reputation, cost, and product innovation.
Heading into 2025, it’s vital for security providers to consider their AI offerings. If their AI-enabled solution is still sitting on the product roadmap, they must focus on building trust and brand awareness while providing clear, detailed product information on features and business value. For providers that have AI already integrated into their security solution offering, it’s essential that they ensure their technology is secure, easy to integrate, and adds measurable value without increasing complexity for customers.
Cyber Technology Insights: Socure Acquires Effectiv in $136M Deal
To share your insights, please write to us at news@intentamplify.com
Source – globenewswire