US$19.5MTotal average annual cost of insider security incidents
2026Cost of Insider Risks Global Report
Independently conducted by:Ponemon Institute
Ponemon's largest Cost of Insider Risk Study yet.
Independently conducted by:Ponemon Institute
Ponemon's largest Cost of Insider Risk Study yet.
US$19.5MTotal average annual cost of insider security incidents
67 DAYS to contain, down from 86 in 2023
19% IT budget allocated to IRM, up from 8.2% in 2023
$10.3M cost of negligent insiders, up 17% year over year
92% say GenAI has changed how employees access and share information
13% have formally integrated AI into their business strategies
Insider risk now costs organizations an average of US$19.5M annually, driven primarily by negligent, non-malicious behavior in increasingly complex digital environments. This year’s research shows how shadow AI and AI agents are amplifying risk as AI adoption outpaces visibility and governance. At the same time, the data highlights clear returns from mature insider risk management programs: fewer incidents and millions in avoided losses. Download the report to understand both the risk drivers and the measurable ROI of closing the gap.
