Accenture has officially published the results from its “State of Cybersecurity Resilience 2025” report, which is based on a survey of 2,286 cybersecurity and technology executives from large organizations around the globe.
Going by the available details, a contingent of 90% organizations were deemed as inadequately prepared to secure their AI-driven future, whereas on the other hand, nearly two-thirds (63%) of companies were found to lack both a cohesive cybersecurity strategy and necessary technical capabilities. Alongside that, 77% of organizations emerged as devoid of essential data and AI security practices needed to protect critical business models, data pipelines and cloud infrastructure.
“The rapid advancement of gen AI represents a profound paradigm shift in cybersecurity, bringing unique challenges and opportunities. By designing AI systems with security at their core and continuously monitoring and updating them, organizations can stay ahead of the most critical threats,” said Daniel Kendzior, Global Data and AI Security Lead at Accenture. “Business resilience requires readiness to quickly response to disruptive forces and confidence in your organization’s ability to act effectively.”
Talk about the whole research on a slightly deeper level, we begin from the fact that, even with the rapid growth of AI enterprise adoption, only 22% of organizations have implemented clear policies and training for gen AI use. Data protection also remains largely inadequate. We get to say so because no more than 25% of organizations are fully leveraging encryption methods and access controls to protect sensitive information.
Next up, Accenture’s report uncovered severe widespread cybersecurity immaturity across regions. You see, only 14% of North American and 11% of European organizations have mature postures. As far as Latin America is concerned, 77% lack basic strategies and capabilities, while 71% of Asia-Pacific organizations are up against serious operational and financial risk.
Markedly enough, the research identifies three distinct security maturity zones based on an organization’s cybersecurity strategy and technical capabilities.
The top zone, named Reinvention Ready Zone, had companies with an adaptive resilient security posture which continuously evolves to counter emerging threats.
This group had a lowly 10% of all surveyed companies despite the fact that Reinvention Ready companies are 69% less likely to face advanced attacks and are 1.5 times more effective at blocking them. They also have 1.3 times greater visibility across IT and OT environments, reduced technical debt by 8%, and see a 15% boost in customer trust,
The second zone, named Progressing Zone, had companies that show some positive signs, but at the same time, continue to struggle with defining strategic direction or implementing defenses. This group had about 27% of all surveyed organizations.
The most at-risk group, named Exposed Zone, had the biggest chunk with 63% of organizations struggling against limited cyber readiness and a reactive posture to threats. In case that wasn’t enough, these conditions are only made worse by today’s complex AI environment and global risk factors.
Accenture also took this opportunity to share some critical actions necessary for reaching the “Reinvention Ready Zone”.
These actions include developing and deploying a fit-for-purpose security governance framework and operating model which accounts for the realities of an AI-disrupted world, establishing clear accountability and aligning AI security with regulatory and business objectives.
The next suggestion in line would be of designing a digital core to be generative AI secure from the outset. This can be achieved by integrating security into AI development, deployment, and operational processes.
Another suggestion coming into play relates to maintaining resilient AI systems with secure foundations that proactively address emerging threats, enhance detection capabilities, enable AI-model testing, and improve response mechanisms.
Rounding up highlights is a recommendation to automate security processes, strengthen cyber defenses, and detect threats sooner by harnessing the power of GenAI.
“Rising geopolitical tensions, economic volatility and increasingly complex operational environments, coupled with AI-augmented attacks, are leaving organizations more vulnerable to cyber risks. This report serves as a wake-up call that cybersecurity can no longer be an afterthought. It must be embedded by design into every AI-driven initiative,” said Paolo Dal Cin, global lead, Accenture Security. “Taking this proactive approach will help ensure a competitive edge, strengthen customer loyalty and turn cybersecurity into a business enabler.”