Indian executives rank cybersecurity as their top risk mitigation priority (61%), followed by digital and technology risks (60%), inflation (48%), and environmental risks (30%) for the next 12 months, as per findings from PwC’s 2025 Digital Trust Insights.
The report revealed that 93% of respondents anticipate an increase in their cybersecurity budgets next year, with 17% planning to raise their budgets by 15% or more—an increase of 1% from last year. Additionally, 42% of Indian business leaders are prioritising data protection and remediation in the aftermath of recent cyber breaches as their main cyber investment for the coming year.
“From the boardroom to operational teams, it is essential that business leaders hold each other accountable and respond to the evolving landscape of cyber threats. By embracing advanced technologies, adhering to foundational cybersecurity principles, and allocating resources effectively, organisations need to stay committed to fortifying defences and safeguarding their future,” says Sivarama Krishnan, partner and leader, Risk Consulting, PwC India & Leader of APAC Cyber Security & Privacy, PwC.
Cloud-related threats remain the foremost worry, cited by 55% of Indian executives as their most concerning cyber risk, marking a 3% increase from the previous year. However, 50% of security leaders and chief financial officers (CFOs) feel least prepared to address these threats in the coming year.
The report also goes on to state that all security leaders and CFOs have stated that regulations have prompted them to boost their cyber investments with 74% enhancing or strengthening their cybersecurity stance. It underscores the critical role of strategic investments and regulatory compliance in shaping a resilient cyber future for Indian businesses.
Further reinforcing the shift towards advanced technological defences, the report highlights that Gen AI is at the helm of cyber investment priorities, with 87% of organisations having boosted their investments over the last 12 months. Additionally, 86% of organisations have increased their spending on AI governance as part of their risk management strategies. Furthermore, 80% of Indian companies are highly confident in their ability to comply with AI regulations.
“Advances in emerging technologies such as artificial intelligence (AI) and the increased adoption of cloud services have significantly expanded the attack surface for enterprises. This trend underscores the necessity for a flexible, enterprise-wide resilience strategy. Organisations must align their priorities and readiness at every level to safeguard security and ensure seamless business continuity,” says Manu Dwivedi, partner and leader – Cybersecurity and Risk Consulting GCC, PwC India.
The report also stated that despite all efforts, the impact of cyber incidents remains substantial. The percentage of security leaders in India reporting a data breach with costs exceeding USD 20 million has decreased by 3% from last year to 8%. Additionally, 44% of leaders have experienced a data breach costing over USD 500,000 in the past three years. More than 33% of leaders indicate that most of their serious data breaches within the last three years have incurred costs of no less than USD 1 million.
“Although a majority of senior leaders acknowledge the importance of quantifying cyber risk to prioritise investments, only one-fifth of organisations are adopting thorough risk quantification methodologies. This disparity highlights an overlooked opportunity that must now be addressed. Developing a dependable cyber risk quantification system is crucial for informed decision-making and prioritising strategic investments,” Sivarama adds.
