What makes for successful cybersecurity? Is there evidence that security investments result in measurable outcomes? How do we know what actually works and what doesn’t? (more available)

This report aims to examine the issue of stalkerware. They present data to understand the changes and scale of the problem in 2020. (more available)

This report looks at the roles and responsibility CISO’s have, highlighting changes over the past 12-18 months.

This report assesses corporate perceptions of nation-state cyber-threats. It finds that companies have become more aware of the challenges posed by such threats and are concerned about them; however, their ability to respond to evolving risks may be lacking. (more available)

Part 1 of the Cloud Impact Study reveals that businesses understand the importance of the cloud and strive to adopt this model. (more available)

This report aims to capture the mood and environment of the cybersecurity workforce in the midst of the COVID-19 pandemic. It reveals the impact COVID-19 has had on cybersecurity professionals and teams and the challenges many of them have had to overcome. (more available)

This report was created after a survey of more than 900 Senior IT security decision-makers. It looks at how they allocate finite resources in a way that best serves their organization. (more available)

Based on a survey of over 4,800, this report reviews the practices that lead to positive outcomes for security programs. Linking together practices that are more (or less) successful to the characteristics of positive outcomes, this report aims to give guidance for where practitioners can focus their efforts to achieve similar outcomes. (more available)

This report is based on a survey of 250 cybersecurity and IT decision-makers. It aims to provide insight on cybersecurity challenges in financial services in the age of COVID-19. (more available)

The tenth annual survey of risk managers, insurance buyers and other risk professionals. This covers the results of over 400 responses on attitudes and behaviors to cyber insurance and perceptions of risk. (more available)

This report shows the latest trends, challenges, and best practices for email security, designed to help organizations better protect against today’s threats. (more available)

This report reflects insights from 51 state and territory respondents on the CISO’s role, as well as budget, governance, reporting, workforce, and operations. (more available)

This report evaluates the state of security in healthcare in 2020, and compares it against 3-years’ worth of historical client data. (more available)

A deep dive into the nature of the healthcare sector’s public risk surface. Reviewing subsectors of the healthcare ecosystem, including supply chains. (more available)

This report attempts to understand the theory and practice of web application security in organizations worldwide.

This report is based off an August 2020 survey, in order to better understand how companies should allocate finite resources, how decisions on cybersecurity are made, and more. (more available)

This report gives insight on how modern IT organizations deal with the challenges of managing Saas at scale.

A survey of over 1,500 CIOs, CISO, and Chief Procurement Officers on their concerns and actions for supply chain management. This is a US specific version of the main report. (more available)

A survey of over 1,500 CIOs, CISO, and Chief Procurement Officers on their concerns and actions for supply chain management.

A June 2020 survey to assess the current challenges and perceptions of the oft-mentioned cybersecurity skills gap problem faced by IT and security teams worldwide. (more available)

This report looks at the 10 most impactful factors in cybersecurity success for the next decade.