Strengthening Cybersecurity in Ireland: Insights from the EY Cyber Leaders Index
A wave of enhanced cybersecurity measures has swept across Ireland’s organizational landscape recently. According to new research from EY Ireland, a significant 83% of cyber leaders report upgrades in their cybersecurity protocols over the last six months. This shift stems from a growing recognition of the importance of robust cyber defenses amid evolving threats.
Budget Allocations: A Mixed Bag
The findings of the inaugural Cyber Leaders Index reveal a dual landscape. While nearly one-third (32%) of the surveyed cyber leaders indicated an increase in budgets, the majority (67%) reported stable spending. However, this financial commitment is not consistent across areas. Over 70% of respondents face hurdles in securing funding for essential staff cyber awareness training, and 43% struggle to attract and retain skilled personnel—an ongoing challenge in the cybersecurity field that remains largely unaddressed.
The Double-Edged Sword of AI
Artificial intelligence is emerging both as an opportunity and a complex risk in the cybersecurity realm. Nearly half (48%) of cyber leaders have pinpointed AI and data security as top priorities for the upcoming year. With the introduction of the EU AI Act, many organizations are revising their practices to align with new regulations. Yet, a staggering 44% of respondents reported challenges in obtaining budget allocations for AI-related security initiatives, indicating that while the ambition is there, funding often lags behind.
The Importance of Supply Chain Security
As cyberattacks increasingly target supply chains, securing third-party relationships has become a focal point for many organizations. A notable 68% of cyber leaders view protecting against supply chain and vendor-related threats as a priority. However, it’s striking that only 4% identified third-party vendor risk as a primary concern, raising questions about awareness and preparedness regarding external vulnerabilities.
Compliance Pressures Mounting
The pressure to adhere to regulatory measures has heightened, with 39% of respondents prioritizing compliance with data privacy and cybersecurity regulations such as NIS2. In response, almost half (47%) have recently updated their data handling and monitoring practices, while 39% revised their data protection impact assessments. The increasing complexity of compliance requirements underscores the need for comprehensive strategies to meet these challenges without compromising security.
Evolving Roles of Cyber Leaders
Puneet Kukreja, Technology Consulting Partner and Head of Cyber at EY Ireland, emphasizes the necessity for cyber leaders to evolve from traditional roles into architects of trust within their organizations. He advocates for their inclusion in strategic discussions and budgetary decisions, highlighting the importance of managing cyber risk as a critical aspect of overall business strategy.
Focusing on People and Partnerships
Carol Murphy, Consulting Partner and Head of Markets at EY Ireland, highlights the need for investment not just in technology but also in human capital. Training and support for teams are essential to help them meet the growing demands of compliance and third-party risk. The key, she suggests, lies in redirecting current investments toward cultivating skilled, well-prepared professionals.
Rising Burnout: The Hidden Cyber Risk
The report raises an alarming issue concerning the mental health of cyber leaders. A significant 37% express concerns about gaps in risk coverage, while more than a quarter (26%) report negative mental health effects from their roles. Kukreja warns that stress is quickly becoming an overlooked cyber risk, impacting both performance and retention at a time when the industry is grappling with a shortage of skilled talent.
Visual Insight
To accompany this research, a visual representation provides a compelling snapshot of the current state of cybersecurity in Ireland. The image captures Puneet Kukreja, Carol Murphy, and Megan Conway as they unveil the EY Ireland Cyber Leaders Index 2025, symbolizing the forward momentum and importance placed on steering organizations through the complex landscape of cybersecurity.
Through ongoing investment in both technology and talent, Irish organizations are improving their cyber resilience. As this landscape continues to evolve, it is crucial for leaders at all levels to remain informed and adaptable, ensuring that they not only safeguard against current threats but also prepare for the unforeseen challenges of tomorrow.
