IG&H CISO pulse survey
- May 13
- 1 min read
Updated: May 19
Exploring the key trends and priorities shaping cybersecurity agendas for 2026
Chief Information Security Officers (CISOs) are recalibrating their 2026 security agendas in response to escalating regulatory pressure, fast-moving AI risks and increasing operational complexity. To understand how security leaders are navigating these shifts, we engaged 27 participants, all of whom are either CISOs or hold other cybersecurity leadership roles across healthcare, financial services, retail, IT suppliers and related sectors.
Their insights establish a clear benchmark of what peers are prioritizing, providing answers to questions such as:
• Where are security leaders investing?
• Which capability gaps pose the greatest execution risk?
• How do leaders aim to strengthen control maturity while enabling business transformation and responsible AI adoption?
Methodology
This study engaged 27 cybersecurity leaders across a range of industries and organizational contexts. We surveyed and interviewed participants from: Healthcare and related services (26%), Retail & Products (30%), Financial Services (23%), IT/cyber suppliers (17%) and Other (4%). This research was conducted from February to March 2026.
Across sectors, respondents consistently emphasized five strategic priorities shaping their 2026 security programs. These priorities reflect a shift from “classic cybersecurity operations” toward governance maturity, AI readiness and resilience against impactful business disruption. CISOs describe AI as unavoidable as employees and business demand it, while governance, policy and safe-use maturity lag behind.
To find out more about the top strategic priorities, top concerns, main areas of investment and more, you can
