A 2022 survey of State Chief Information Security Officers (CISOs) in the United States found that state-level privacy regulations with commitment to funding were more likely to improve the state's cybersecurity posture and reduce risk. Roughly 35 percent of state CISOs said such regulations were most effective. In the case of the federal cybersecurity regulations with funding, only 15 percent thought they were most effective.
Degree of effectiveness of cybersecurity regulations according to state CISOs in the United States in 2022
Effectiveness degree (1 - least effective, 5 - most effective)
State regulations/legislation with commitment for funding
State regulations/legislation without commitment for funding
Federal regulations with commitment for funding
Federal regulations without commitment for funding
State chief information security officers (CISOs) of 50 states and three territories;1 - least effective, 5 - most effective
Supplementary notes
The original question was phrased by the source as follows: "How effective are applicable federal and stats cybersecurity regulations at improving your state's cybersecurity posture and reducing risk?" (1 - least effective, 5 - most effective)
Profit from the additional features of your individual account
Currently, you are using a shared account. To use individual functions (e.g., mark statistics as favourites, set
statistic alerts) please log in with your personal account.
If you are an admin, please authenticate by logging in again.
Learn more about how Statista can support your business.
Deloitte. (October 8, 2022). Degree of effectiveness of cybersecurity regulations according to state CISOs in the United States in 2022 [Graph]. In Statista. Retrieved March 10, 2025, from https://www.statista.com/statistics/1455377/us-cybersecurity-regulations-effectiveness-ciso/
Deloitte. "Degree of effectiveness of cybersecurity regulations according to state CISOs in the United States in 2022." Chart. October 8, 2022. Statista. Accessed March 10, 2025. https://www.statista.com/statistics/1455377/us-cybersecurity-regulations-effectiveness-ciso/
Deloitte. (2022). Degree of effectiveness of cybersecurity regulations according to state CISOs in the United States in 2022. Statista. Statista Inc.. Accessed: March 10, 2025. https://www.statista.com/statistics/1455377/us-cybersecurity-regulations-effectiveness-ciso/
Deloitte. "Degree of Effectiveness of Cybersecurity Regulations According to State Cisos in The United States in 2022." Statista, Statista Inc., 8 Oct 2022, https://www.statista.com/statistics/1455377/us-cybersecurity-regulations-effectiveness-ciso/
Deloitte, Degree of effectiveness of cybersecurity regulations according to state CISOs in the United States in 2022 Statista, https://www.statista.com/statistics/1455377/us-cybersecurity-regulations-effectiveness-ciso/ (last visited March 10, 2025)
Degree of effectiveness of cybersecurity regulations according to state CISOs in the United States in 2022 [Graph], Deloitte, October 8, 2022. [Online]. Available: https://www.statista.com/statistics/1455377/us-cybersecurity-regulations-effectiveness-ciso/
