The recently conducted Fortra State of Cybersecurity Survey for 2025 has shed light on the current trends and challenges in the cybersecurity landscape. As organizations gear up to combat more sophisticated threats and adhere to stricter regulations, they are focusing on strengthening their foundational cybersecurity measures. Moreover, the rise in the adoption of managed security services has been attributed to budget limitations, compliance requirements, and operational efficiency.
The survey gathered insights from various practitioners across different industries to understand the key factors that will shape the upcoming year. When asked about their top cybersecurity initiatives for the next 6-12 months, respondents highlighted the importance of identifying and closing security gaps, improving security culture and awareness, and limiting outsider threats. This emphasis on holistic cybersecurity measures signifies a strategic shift towards enhancing overall cybersecurity capability and resilience.
One of the primary challenges identified by survey respondents was the increasing threat of phishing, smishing, malware, ransomware, and social engineering. Cybercriminals are leveraging advanced tools like AI to create highly sophisticated phishing emails and messages, posing a significant risk to organizations worldwide.
Budgetary constraints emerged as the top challenge for organizations in executing their security strategies in the coming months. This, along with a lack of security knowledge and skills, and the need to balance security controls with business efficiency, underscores the importance of effective resource allocation and strategic decision-making in cybersecurity management.
With the rising number of data breaches and cyberattacks, organizational leadership is facing increased pressure to prioritize cybersecurity and mitigate potential risks. Executives and board members are increasingly being held accountable for cybersecurity failures, leading to a more comprehensive approach to cybersecurity governance beyond the traditional roles of the CISO and SOC.
In response to these challenges, there has been a notable increase in the adoption of managed security services. Organizations are looking to outsource certain security functions such as penetration testing, email security, and vulnerability management to third-party providers. This shift is driven by the need to offload operational burdens, meet compliance requirements, and refocus internal resources on strategic initiatives.
Overall, the results of the Fortra State of Cybersecurity Survey indicate a growing emphasis on operational efficiency, regulatory compliance, and cybersecurity resilience. As threat actors continue to evolve their tactics, organizations are striving to equip themselves with the necessary tools, skills, and strategies to navigate the complex cybersecurity landscape. By prioritizing cybersecurity maturity, leveraging managed security services, and enhancing internal capabilities, organizations can better safeguard their digital assets and mitigate the risks associated with cyber threats.