Only 4% of organizations worldwide have achieved the “Mature” level of cybersecurity readiness needed to tackle modern threats, according to the 2025 Cisco Cybersecurity Readiness Index. While this marks a small increase from last year’s 3%, it highlights ongoing global cybersecurity gaps as AI and hyperconnectivity add complexity to security efforts.
The study, which surveyed 8,000 leaders across 30 countries, assesses cybersecurity preparedness in five key areas: Identity Intelligence, Network Resilience, Machine Trustworthiness, Cloud Reinforcement, and AI Fortification. The research shows that 86% of organizations faced AI-related security incidents in the past year, yet only 49% of respondents are confident their teams fully understand AI-related risks.
Jeetu Patel, Cisco’s Chief Product Officer, noted, “AI introduces a new class of risks, adding pressure to our defenses.” Despite AI’s benefits for threat detection and response, the rise of generative AI tools presents risks, with 60% of IT teams unaware of how employees use these tools.
“Shadow AI” is also a growing concern, as 60% of organizations lack confidence in detecting unregulated AI deployments. Additionally, 77% of organizations report that their complex security infrastructure makes it difficult to respond quickly to threats.
While 96% of organizations plan to upgrade their IT systems, only 45% are allocating more than 10% of their IT budget to cybersecurity. As cyberattacks become more likely, 71% of respondents expect disruptions in the next 12 to 24 months.
A shortage of cybersecurity professionals remains a major challenge, with 86% of respondents citing it as a key concern, while external threats are seen as a bigger risk than internal ones.
Patel emphasized, “Organizations must rethink their strategies or risk becoming irrelevant in the AI era.”
