What’s the state of cybersecurity in the coming year?

As the cybersecurity threat landscape grows more complex, professionals are under pressure to safeguard their organizations while navigating skills gaps, AI disruption, and resource constraints. What challenges are your peers facing this year? How prepared are teams to respond to rising threats? Gain insights from ISACA’s State of Cybersecurity 2025 report and other resources to discover the answers to these questions and more.

Plus, in honor of Cybersecurity Awareness Month this October, ISACA is offering a special 20% discount on the Certified Cybersecurity Operations Analyst (CCOA) Online Review Course.

ISACA’s study of 3,800+ cybersecurity professionals

According to the study, cybersecurity professionals reported areas of top concern, including:

47%
OF CYBER TEAMS ARE INVOLVED IN AI GOVERNANCE, UP NOTABLY FROM LAST YEAR
63%
CITE THE COMPLEX THREAT LANDSCAPE AS THEIR LEADING STRESSOR
55%
OF THEIR ORGANIZATIONS’ CYBERSECURITY TEAMS ARE UNDERSTAFFED

Explore the State of Cybersecurity Report

State of Cybersecurity

With attacks becoming more sophisticated and teams stretched thin, it’s more important than ever to understand the critical factors impacting cybersecurity teams today. Access ISACA’s State of Cybersecurity 2025 report to learn more and help you in your work to align cybersecurity strategy with business goals, strengthen technical and soft skills, and foster a workplace culture that prioritizes adaptability, resilience, and well-being.

get your free copy

State of Cybersecurity 2025 Resources

State of Cybersecurity Infographic
Infographic

State of Cybersecurity 2025 Infographic

ISACA’s State of Cybersecurity 2025 shows talent gaps, stress, and AI’s rise in security. Discover the priorities for resilient leaders."

29 September 2025
Jeff Wade
Blog Post

Adaptability Over Experience: Why Cybersecurity’s Top Talent Trait Has Changed, and What It Means for Leadership

At a time when keeping pace with artificial intelligence and the evolving threat landscape is no small task, organizations increasingly are valuing adaptability as a top trait for their cybersecurity professionals.

29 September 2025
Visual representation of a VPN app for Android, highlighting its APK file and key functionalities.
Press Release

New ISACA Study: Despite Understaffed Cybersecurity Teams, Fewer Enterprises Are Training Staff for Security Roles

ISACA’s State of Cybersecurity 2025 survey report also finds that 70 percent of security professionals expect the demand for technical cybersecurity pros to rise in the next year

29 September 2025
Free CPE
Webinar

State of Cybersecurity 2025

The eleventh annual state of cybersecurity global study looks at topics such as cybersecurity staffing, operations, and the threat landscape.

Upcoming: 7 October 2025
Cyber security shield on a blue background
Blog Post

Roundtable Q&A: 2025 State of Cybersecurity

Cybersecurity professionals from around the world recently weighed in on some of the key findings from ISACA’s latest State of Cybersecurity survey report.

29 September 2025

Save on cybersecurity training and expand your expertise

CCOA Online Review Course

Make October your month to advance your cyber skillset. Expand your expertise in combating cyber threats and save 20% on ISACA’s Certified Cybersecurity Operations Analyst (CCOA) Online Review Course. Offer ends 31 October. Use promo code PRODCYBERCCOA20

get your copy

Related ISACA certifications

CCOA - Certified Cybersecurity Operations Analyst

Evaluate and prevent cyber incidents

Focus on the technical skills to understand threats and protect digital ecosystems.

Explore CCOA
CISM Logo

Meet evolving security threats

Assess risks and effectively manage cyber attacks with this award-winning security certification.

explore cism
AAISM logo

Secure enterprise AI

Help lead the way to a more robust AI security posture with this all-new advanced certification.

explore aaism

Expert insights

See what cybersecurity leaders had to say about this year’s research findings

Pablo Ballarin
We are living in a context of constant technological change, intrinsically linked with society, and ISACA’s 2025 survey reflects this reality. The findings reveal that cybersecurity is no longer just a technical battlefield, but also a human and organizational challenge. The growing skills gap—especially in adaptability and critical thinking—combined with rising stress and talent shortages, requires leaders to invest not only in technology but also in people. At the same time, the sharp rise in social engineering and the growing role of cybersecurity in AI governance remind us that trust and resilience must be built on both human judgment and robust governance frameworks.
PABLO BALLARIN
Cybersecurity Advisor
ISACA’s report highlights that 59% of organizations list soft skills as the top skills gap. When you break that down, you see critical thinking, communication, and problem-solving outpacing hard skills like threat detection and endpoint security. But still, you see very few organizations setting aside funding to close those gaps – and even fewer are measuring them during hiring.
JEFF WADE
Global CISO, cybersecurity strategist & thought leader
Jeff Wade
Kannammal Gopalakrishan
Cybersecurity leaders need to take a strategic and holistic approach to staffing by building targeted upskilling and reskilling programs to bridge competency gaps; aligning compensation, growth opportunities, and career pathways with market standards to stay competitive; and then embedding clear objectives and key results to measure and demonstrate the impact of these initiatives. They also need to foster a strong culture of purpose, recognition, and inclusivity so employees feel valued and engaged, and adopt flexible work models and mentorship programs that improve work-life balance and long-term retention.
KANNAMMAL GOPALAKRISHNAN
Cybersecurity and GRC professional

Empower your team with cybersecurity training

ISACA offers an array of resources and team training opportunities that fits your organization’s unique goals. Make cybersecurity a key priority in today’s changing tech landscape.

FIND OUT MORE