CISOs’ Confidence and Concerns in the Face of Cyber Attacks: A 2024 Report

CISOs, or Chief Information Security Officers, are demonstrating increasing confidence in their ability to defend against cyber attacks, according to a recent report by Proofpoint. Despite fears of cyber attacks, 70% of surveyed CISOs feel at risk of a material cyber attack over the next 12 months, compared to 68% the year before. However, confidence among CISOs is growing, with just 43% feeling unprepared to cope with a targeted cyber attack, showing a marked decrease over previous years.

Human error continues to be perceived as the biggest vulnerability in cybersecurity, with 74% of CISOs identifying it as the most significant risk. In response to this, more CISOs are turning to AI-powered solutions to mitigate human-centric risks and enhance their defenses.

While CISOs are increasingly confident in their ability to defend against cyber threats, they are also concerned about new challenges. 54% of CISOs believe that generative AI poses a security risk to their organization, and ransomware and malware are among the top cybersecurity threats perceived by CISOs in 2024.

Despite these challenges, CISOs are working to improve their cybersecurity measures, with 51% of CISOs surveyed in 2024 having data loss prevention technology in place, compared to just 35% in 2023. Additionally, 53% of CISOs have invested in educating employees on data security best practices.

Overall, the report highlights a shift towards greater resilience, preparedness, and confidence among global CISOs, as they navigate the evolving cybersecurity landscape. As Ryan Kalember, chief strategy officer at Proofpoint, notes, vigilance and adaptation are key to ensuring collective cyber resilience in the face of ongoing challenges.