Many Chief Information Security Officers (CISOs) are ramping up their crisis simulation capabilities in 2025 to prepare for full-scale cyber crises. A recent study by Hack The Box found that 74% of the 200 CISOs surveyed in the UK and US plan to increase their crisis simulation budgets.
The Driving Forces Behind This Shift
Several factors contribute to this increased focus on crisis simulations:
- Rising cyber-attack volumes and sophisticated threat actors.
- Lack of incident response planning, leaving organizations vulnerable.
- Inadequate stress-testing of real-world crisis scenarios.
Following high-profile cyber-attacks in 2024 affecting organizations like 23andMe, the UK National Health Service, Cencora, and Transport for London, CISOs recognize the urgent need for proactive defense mechanisms.
Which Industries Are Leading & Lagging?
Industries such as education, IT services, and technology demonstrated strong attack readiness, exceeding the average solve rate of 15.8%. These sectors showed expertise in coding, forensics, and hardware security. However, finance, healthcare, and business services lagged behind, with business services scoring 25% lower than the average solve rate.
Key Findings from the Study
- 74% of CISOs are increasing crisis simulation budgets in 2025.
- 73% prioritize practical incident response exercises involving technical and non-technical teams.
- 77% would allocate even greater budgets if simulations were more realistic and actionable.
“As a CISO, I see crisis simulations as an essential component of our security posture. The increasing sophistication of attacks means we can’t afford to be reactive—we must test and refine our response strategies continuously. Realistic and actionable simulations help us build confidence across all departments and ensure a unified response when a real attack happens.” – [CISO, RELIANOID Client]
How RELIANOID Supports CISOs in Crisis Preparedness
At RELIANOID, we empower CISOs with cutting-edge security solutions that enhance crisis readiness. Our advanced application delivery and security platforms integrate seamlessly with crisis simulation frameworks, providing real-time threat mitigation, automated response capabilities, and in-depth analytics. By ensuring network resilience and optimizing security performance, RELIANOID helps organizations strengthen their defenses against evolving cyber threats. Let us help you.
Related Blogs
