Across the US, UK and DACH, IT leaders are wrestling with similar forces, accelerating AI adoption, legacy system modernisation, talent shortages, and intensifying cybersecurity threats.
Yet while the headlines may sound familiar, our recent roundtables with senior decision-makers across these regions reveal a deeper truth: while the challenges are global, the responses are anything but.
The global convergence: AI, security and data governance dominate
Across all three regions, three themes dominated every conversation:
- AI is moving from buzzword to business case. Whether through Microsoft Copilot pilots or custom use cases, nearly every organisation is either experimenting or scaling.
- In the US, 79% of leaders said AI strategy is now a board-level priority.
- In the UK, 65% are trialling generative AI tools, but most cite uncertainty over ROI.
- In DACH, 84% said AI is a strategic priority, but only 36% have deployed it at scale.
- Cybersecurity is a shared concern, but not a shared approach.
- 91% of US participants see security as a key driver of tech investments.
- UK leaders are increasingly shifting to shared responsibility models, embedding cybersecurity into wider IT functions.
- In DACH, regulatory compliance and defence against AI-generated phishing were top concerns, with 78% struggling to assess AI risks in SaaS platforms.
- Data governance is the Achilles’ heel of AI ambitions.
- 73% of leaders across all regions cited poor data quality or ownership as a blocker.
- In the UK, 69% are grappling with data silos and inconsistent frameworks.
- In DACH, 81% said their AI strategies rely on major improvements in data maturity.
Regional divergence: local pressures shape priorities
Despite overlapping themes, each region revealed distinct nuances in how decision-makers are responding.
United States: From pilots to platforms
In the US, AI is no longer experimental – it’s foundational. Leaders are moving from proof of concept to enterprise-wide strategies:
- Operational AI is outpacing generative AI. From trading automation to insurance claim approvals, 63% said AI is already integrated into core workflows.
- Agentic AI is top of mind, but regulation is a brake. While there’s excitement about autonomous systems, 76% say regulatory ambiguity is limiting adoption.
- Cybersecurity is seen as a business enabler, not just a risk function. 87% said security investments are now aligned with commercial goals, not just compliance.
United Kingdom: Struggling with speed and structure
UK IT leaders are under pressure to deliver AI results, but internal structures are slowing them down.
- Leadership expectations are ahead of reality. 71% said their executives are demanding AI outcomes without understanding the constraints.
- Generative AI pilots are everywhere, but frameworks are immature. Most are using Microsoft Copilot, but few have built governance around use.
- Cybersecurity is shifting left. There’s a move from isolated teams to a shared organisational mindset, with 66% embedding security responsibilities into IT operations.
DACH: Innovation meets regulation
In the DACH region, digital innovation is accelerating, but every step forward comes with regulatory scrutiny.
- AI innovation is strong, but so is resistance. 84% said AI is strategically important, but many face cultural and legal barriers to deployment.
- Cyber threats are escalating. 72% flagged AI-generated phishing and misinformation as a growing concern.
- Security and compliance are inseparable. The EU AI Act and Data Act are front of mind, with 68% investing in explainability and data traceability.
Investment priorities: where the money is going
Despite macroeconomic uncertainty, IT budgets are holding firm, but how that money is spent varies widely:
| Priority Area | US (%) | UK (%) | DACH (%) |
|---|---|---|---|
| AI and Automation | 79 | 65 | 84 |
| Cybersecurity | 91 | 66 | 72 |
| Cloud Modernisation | 74 | 58 | 67 |
| Data Governance | 68 | 69 | 81 |
| Talent and Skills | 52 | 61 | 48 |
- The US is focused on performance. Investment is flowing into operational efficiency and process automation.
- The UK is stuck in the pilot phase. Leaders are investing in experimentation but lagging in enterprise adoption.
- DACH is building for resilience. There’s strong investment in regulatory tech and data governance.
The talent gap: an unspoken crisis
Across regions, there’s quiet but growing anxiety about skills. While everyone is building strategies, few have the talent to execute them:
- In the UK, 74% cited a lack of internal AI expertise.
- In DACH, 61% said transformation efforts are slowed by leadership knowledge gaps.
- In the US, 58% are developing internal AI academies to reskill technical staff.
As one CIO put it: “We’re building the plane while flying it, and we’re short a few pilots.”
What leaders need next
Across the board, IT decision-makers know what they want: faster transformation, better security, and real AI impact. What they need, however, is more foundational:
- Clarity from the top. 70% said lack of board-level understanding is hindering progress.
- Cross-functional collaboration. Silos between data, IT and compliance remain a critical barrier.
- Realistic timelines. 64% said they’re being asked to deliver enterprise AI outcomes with POC-level maturity.
Until these foundational gaps are addressed, transformation will remain uneven, and ROI elusive.