Data Snapshot

European CISOs Are Still Stuck Reporting To IT

European CISOs Still Mainly Report To CIOs While Other Regions Are Elevating The CISO Role

February 26th, 2024
With contributors:
Paul McKay , Zaklina Ber , Jen Barton

CISOs reporting to CEOs can solve numerous cybersecurity problems. CISOs can manage their own budget and respond faster to market conditions when given more autonomy. And yet, only 21% of European CISOs (or senior-most information security decision-makers) report to CEOs and 40% still report into CIOs. Europe is falling behind other regions in promoting CISOs to the executive level, where security gets more attention and focus. With the upcoming NIS2 Directive, reporting lines need to be reviewed to alleviate pressure on CIOs and allow boards to demonstrate they are sufficiently managing their cyber risk.

Want to read the full report?

Contact us to become a client

This report is available for individual purchase ($395).

Forrester helps business and technology leaders use customer obsession to accelerate growth. That means empowering you to put the customer at the center of everything you do: your leadership strategy, and operations. Becoming a customer-obsessed organization requires change — it requires being bold. We give business and technology leaders the confidence to put bold into action, shaping and guiding how to navigate today's unprecedented change in order to succeed.