The ongoing shortage of skilled cybersecurity professionals remains a challenge for 92% of organizations.
According to Cisco’s 2025 Cybersecurity Readiness Index, only 7% of organizations in India have reached the ‘Mature’ stage of cybersecurity readiness. While this is a slight increase from last year’s 4%, the majority of organizations still fall short of being fully prepared to handle today’s complex and fast-evolving cyber threats.
AI Raises the Stakes in Security
The report highlights how AI is transforming the threat landscape. Nearly all organizations (95%) in India experienced AI-related security incidents in the past year. Yet, only 66% believe their employees fully understand AI threats, and just 63% are confident their teams understand how attackers use AI—leaving major gaps in awareness.
“AI is creating a whole new class of threats, and many organizations are not moving fast enough to address them,” said Jeetu Patel, Chief Product Officer at Cisco.
Shadow AI, Device Risks, and Talent Gaps Add Pressure
As more employees use generative AI tools—both approved and unapproved—many IT teams lack visibility. Around 45% of organizations say they cannot detect shadow AI, and 90% cite risks from employees using unmanaged devices.
The report also reveals that 92% of companies struggle with a shortage of skilled cybersecurity professionals, making it harder to stay secure. Additionally, 84% say having too many isolated security tools prevents quick and effective threat response.
Need for Strategic Investment and Unified Security
Despite growing threats, only 54% of organizations allocate more than 10% of their IT budget to cybersecurity. Experts urge companies to shift toward unified, AI-driven security platforms that automate threat detection and response, simplify infrastructure, and reduce risk.
“Cybersecurity is not just about tools—it’s about strategy, awareness, and resilience,” said Samir Kumar Mishra, Director, Security Business, Cisco India & SAARC.