Cybersecurity and Organisational Resilience: Insights from 2025

The pace of change in cyber threats is almost impossible to keep up with. What was a rare incident yesterday is today’s daily reality. Cyberattacks are becoming ever more sophisticated and more frequent, sometimes even as a direct consequence of geopolitical tensions. Consider the recent cyberattacks surrounding the NATO summit in The Hague: international events with immediate, tangible consequences for Dutch organisations.

Against this backdrop, Solvinity, together with PanelWizard and security specialist Securify, conducted research. We asked 453 IT professionals in Dutch organisations with at least 200 employees how they are dealing with digital threats. What have they learnt? Where do vulnerabilities remain? And how is the threat landscape evolving?

Growing confidence: justified or misplaced?

Strikingly, organisations report growing confidence in their digital resilience year after year. In 2025, two-thirds of respondents said they are confident they can withstand cyberattacks (see figure 1).

Organisations with between 500 and 999 employees seem the most certain. Over 71% believe they can withstand such attacks, compared with 59% among organisations with 200–499 employees.

As in previous years, confidence appears lowest among IT professionals using the Public Cloud (58%)(see figure 2).

Despite this confidence, the report shows that a lack of full visibility over IT infrastructure, slow patching processes, and insufficiently integrated security testing remain persistent pain points. Meanwhile, cybercriminals can exploit known vulnerabilities in just a matter of hours.

A rapidly changing playing field

Where organisations could once get by with a firewall and annual audits, this is no longer enough in 2025. Threats are dynamic, come from multiple directions simultaneously, and are often invisible until damage has already been done.

Organisations do seem increasingly aware of the breadth of the threat landscape. From sophisticated phishing campaigns and ransomware to data loss caused by misplaced devices, the variety of risks demands a comprehensive approach.

The use of a SOC, the deployment of Red Teaming, and a combination of technical measures (such as endpoint security, network segmentation, and backups) alongside ongoing employee awareness programmes have proven invaluable. However, in practice, implementing this mix often lags behind intention. Cost and capacity are cited as the biggest hurdles.

Download the full report

The Solvinity Cybersecurity Report 2025 not only provides figures and trends but places them in the context of an ever-changing threat landscape.

You’ll discover:

how organisations in the Netherlands structure their security;
practical advice from field experts, including Marc Guardiola (CTO, Solvinity) and Kees Stammes (CEO, Securify);
where the greatest opportunities lie to act now and reduce risks.

Want to know exactly where your organisation stands compared with the rest, and which actions will have the greatest impact? Download the Solvinity Cybersecurity Report 2025 for immediate access to the complete results, analysis, and practical recommendations.