Gartner Survey Finds 90% of Non-Executive Directors Lack a Measure of Confidence in Cybersecurit…
Gartner –
Ninety percent of non-executive directors (NEDs) lack confidence in the value of cybersecurity investments, with only 10% feeling assured about the balance of protection and costs
Despite this skepticism, there is potential for improvement, as effective CIOs and CISOs can build trust by demonstrating how cybersecurity efforts translate into business value
The 2026 Gartner Board of Directors Survey, which included responses from 330 NEDs across multiple regions, revealed that most boards struggle to link cybersecurity investments to tangible business outcomes
Boards are increasingly concerned about external threats, with geopolitical instability and cyber risks being significant issues
Furthermore, while technology poses risks, NEDs see it as crucial for managing volatility, with a majority prioritizing technology investments, particularly in AI, to enhance shareholder value.
– 90% of NEDs lack confidence in cybersecurity investments; only 10% express strong confidence.
– Effective CIOs and CISOs can improve perceptions by linking cybersecurity to business value.
– Boards seek clarity on cybersecurity risks and their impact on shareholder value.
– 70% of NEDs identify geopolitical instability as a major external threat; one-third see cyber risks as a significant concern.
– Technology is seen as a dual-edged sword—both a risk and an essential tool for managing business volatility.
– 63% of NEDs favor investment in technology and innovation as a strategy for navigating global volatility.
– AI is viewed as the top investment priority, with 57% of NEDs believing it will positively impact shareholder value.
– 71% of boards encourage taking more technology risks and demand a clear AI strategy from their executive teams.
Link: https://www.gartner.com/en/newsroom/press-releases/2025-11-24-gartner-survey-finds-90-percent-of-non-executive-directors-lack-a-measure-of-confidence-in-cybersecurity-value