Cybersecurity in Europe - statistics & facts
In Europe and elsewhere, cybercrime increasingly ranks among the most prevalent and damaging offenses of our time. As cybersecurity threats are almost always cross-border, an attack on the facilities of one country can affect the continent as a whole. This is particularly the case for facilities and sectors that are critical for European societies. As a result, the EU has made significant efforts and investments towards standardization and collective capabilities to respond to major cyberattacks, to ensure international security and stability in cyberspace.
Despite these challenges, the European cybersecurity industry has developed into a well-funded, increasingly regulated, and innovative sector. The Cyber Resilience Act, adopted in October 2024 by the European Council, represents the latest policy effort to make the existing EU cybersecurity legislative framework more coherent and to ensure that products with digital component are made secure throughout the supply chain and their lifecycle. Thanks to strategic investments, public-private partnerships, and a focus on digital sovereignty and skills development, Europe aims to not only secure its digital assets but also become a global leader in cybersecurity technology and policy.
Cybersecurity as a European priority
As cyber threats are increasing in both scope and impact, the need to protect digital assets and network devices has become critical too. Cybersecurity is a dynamic industry, and the revenue it generates in Europe is forecast to continuously increase from around 42 billion euros in 2024 to over 60 billion in 2029. As of 2024, in most European Union (EU) countries, cybersecurity was a very high or fairly high priority for companies. Despite this consensus, taking action remains the main challenge, as 74 percent of companies in the EU reported not having provided any cybersecurity training or raised awareness on the topic among their employees in 2024, this figure even reaching 90 percent in France.Cybersecurity talent in demand
As of 2024, the most critical cybersecurity role for organizations in the EU was Chief security/Information officer (CISO). This role is of utmost importance as CISOs develop security policies, handle risk management, and respond to cyber incidents. European companies are nevertheless facing severe difficulties in terms of recruitment if they have open positions. In 2024, the main hiring obstacles highlighted by organizations in the EU were finding qualified candidates and lack of such candidates.Despite these challenges, the European cybersecurity industry has developed into a well-funded, increasingly regulated, and innovative sector. The Cyber Resilience Act, adopted in October 2024 by the European Council, represents the latest policy effort to make the existing EU cybersecurity legislative framework more coherent and to ensure that products with digital component are made secure throughout the supply chain and their lifecycle. Thanks to strategic investments, public-private partnerships, and a focus on digital sovereignty and skills development, Europe aims to not only secure its digital assets but also become a global leader in cybersecurity technology and policy.
