- Report Find CISOs are less sure their staff protect their businesses
- Almost twice as many experienced a material data loss this year
- Many are concerned about AIS risks some are set to use it for their benefits
Almost more than half (57%) of Chief Information Security Officers (CISOS) believes that staff understand their role in protecting the company, new research from Proofpoint has claimed.
The figure is down from 84% in 2024 and comes along with a finding that despite their best efforts and investments in preventive measures, human error remains the top vulnerability, cited by about three out of five CISOs.
This comes when three out of four (74%) UK CISOS experienced loss of materials in the past year – almost twice 39% in 2024.
UK CISOS is concerned that workers are risking their businesses
Proofpoint’s research added 86% of the material data loss cases involved graduates, but despite attention programs, 30% of organizations still lack insider risk resources.
Looking ahead, almost two -thirds (63%) expect a material cyberattack in the next 12 months, and yet almost as many (61%) admit that their organization is not prepared to respond by 57%ready to pay a ransom to quickly recover systems or prevent data leaks.
Cyber criminals aside (since AI tools have lowered the input barrier while CISOS is also increasing sophistication attack), CISOs are also worried about AI use in their businesses. Two out of three (66%) limits employees’ Genai use completely, with only 60% boasting guidelines for Genai use.
“As Genai adoption speeds up both opportunities and threats, CISOs are asked to do more with less, navigate unprecedented complexity and still protect what matters most,” noted Proofpoint Global Resident Ciso Patrick Joyce.
Nevertheless, more than half (55%) are investigating AI-enhanced defense that goes on, with 72% prioritization of secure Genai use in the next two years.
“Cisos is now facing a double responsibility: utilizing AI to strengthen their safety position while ensuring its ethical and responsible use,” added Proofpoint Chief strategy officer Ryan Kalember.
However, all this has resulted in increased pressure on CISOS – 67% report excessive expectations (up from 62% last year), and 58% have either experienced or witnessed burnout in the past year.
Kalember noted that CISOs have now become central to the company’s decision -making, but Proofpoint’s research revealed that the boardroom with British CISOs has dropped from 84% by 2024 to 57% by 2025, suggesting they will not receive the support they need.
As we look ahead, companies can make subtle changes to close the insider risk difference and to improve the protection of data loss and at the same time establish CISO role clarity in the AI era.
