Survey reveals CISOs' views on jobs, Zero Trust, MFA and more

The survey of hundreds of CISOs at large enterprises paints a picture of a cybersecurity world under siege heading into 2025.

  • Tuesday, 15th October 2024 Posted 1 year ago in by Phil Alsop

Portnox has unveiled the results of its latest survey, “CISO Perspectives for 2025,” revealing critical insights into the challenges faced by Chief Information Security Officers (CISOs) at large enterprises.

The survey, which polled 200 CISOs from companies with annual revenues exceeding $500 million, highlights growing concerns around the effectiveness of Zero Trust, the limitations of Multi-Factor Authentication (MFA), and the looming threat to job security amidst an increasingly complex cybersecurity landscape.

The results present a stark picture of a cybersecurity world under siege, where security leaders must constantly balance ironclad defenses with user-friendly experiences while navigating regulatory demands and soaring cyber insurance premiums.

Key Survey Findings:

Job Security on the Line. Nearly all CISOs (99%) are worried about losing their positions if a breach occurs, with a striking 77% of CISOs being very or extremely concerned. This underscores the immense pressure they face in protecting their organizations.

MFA Under Fire. While MFA has become a cornerstone of many organizations' security strategies, 85% of CISOs expressed concerns that it’s not keeping up with increasingly sophisticated attacks. Common issues include password fatigue, insider threats, and phishing exploits.

Passwordless Gaining Steam. Passwordless authentication represents the agreed upon method for stronger security, but only 7% of organizations have fully implemented it, citing cost, complexity, and employee resistance as key barriers.

NAC Investment is Growing. CISOs unanimously agree that Network Access Control (NAC) is a critical component of any Zero Trust framework they put in place. Reliance on NAC is growing, as more than 4 in 5 are increasing their investment in the next year.

Zero Trust Skepticism. Every CISO surveyed (100%) agreed that Zero Trust Network Access (ZTNA) has not fully lived up to its promise, with many organizations still in the early stages of adoption.

Compliance Challenges. As regulations like NIS2 loom, 90% of CISOs feel overwhelmed by constantly shifting compliance demands, making it difficult to ensure they’re always up to date.

Cyber Insurance Gaps. With 58% of CISOs unsure whether their cyber insurance policies adequately cover critical threats such as supply chain attacks, many organizations are left exposed to potentially devastating risks.

Breaches Remain a Top Concern. Despite the challenges, 86% of CISOs are laser-focused on preventing breaches. However, many concede that their current defenses may not be enough to withstand today’s advanced threats.

“CISOs today are under immense pressure to do more with less, while the stakes have never been higher,” said Denny LeCompte, CEO of Portnox. “The survey results underscore a clear reality: security leaders need tools that not only protect their organizations but also provide peace of mind in an increasingly hostile environment.” 

AI's rise in business: opportunities and challenges

Posted 18 hours ago by Katy Hill
As AI adoption grows in importance, businesses face challenges but aim for balanced, trustworthy integration.
Simon Whatley steps up as General Manager at IPCortex, aiming to develop partner relations and enhance communications solutions.
Wasabi Technologies launches a new initiative, Impact Circle, aimed at partners and MSPs to reduce emissions from cloud storage using curated carbon...

NAKIVO expands its reach in Italy with ICOS partnership

Posted 1 day ago by Sophie Milburn
NAKIVO partners with ICOS to enhance its distribution of data protection solutions across Italy, aiming to tap into the dynamic Italian SMB and...
Aston Martin Aramco Formula One Team partners with Zscaler to enhance cybersecurity strategies and secure real-time data transmission.
Undo has introduced a new AI capability designed to support developers by combining static code analysis with runtime execution data, aiming to...
Arrow Electronics has received Veeam’s 2026 EMEA Aggregator of the Year award, recognising its role in expanding distribution of Veeam’s data...
The rise of AI presents challenges to cybersecurity, with increasing reliance on manual interventions and extended dwell times despite advanced...