Quantum computing is advancing rapidly – and with it, the risk to today’s cryptographic systems.

As “harvest-now, decrypt-later” threats increase, quantum safety has shifted from a technical concern to a C-suite priority. Regulatory pressure, evolving technology ecosystem, and competitive advantage all favor early movers.

Future encrypted: Why post-quantum cryptography tops the new cybersecurity agenda, the latest report from the Capgemini Research Institute, explores how organisations can prepare for a quantum-safe future, leveraging post-quantum cryptography (PQC) with crypto-agile architectures to protect critical assets and maintain trust.

The report’s insights are based on a global survey of 1,000 organisations with at least $1 billion in annual revenues, operating across 13 sectors and 13 countries in Asia–Pacific, Europe, and North America and in-depth interviews with 16 industry executives. Key findings include:

  • Quantum safety is rising on the executive agenda: 70% of surveyed organisations (referred to as “early adopters”) are assessing or deploying quantum-safe measures. Yet only 15% of early adopters qualify as “quantum-safe champions,” with mature governance and technical execution.
  • The threat is real – but still underestimated: 30% of surveyed organisations continue to downplay the urgency of quantum threats, risking future data exposure and regulatory penalties.
  • PQC is the preferred defence strategy: Most organisations recognise PQC as the most viable path to quantum safety. However, skills gaps, budget constraints, and tool limitations are slowing progress.
  • Pilots are underway, but complete transition remains a challenge: Around half of early adopters are running PQC pilots, often in partnership with cloud providers and specialist vendors. Yet few have a clear roadmap for enterprise-wide transition.
  • Quantum-safe champions offer a blueprint: These leaders combine cryptographic inventory management, supply chain engagement, and hardware readiness to accelerate their transition.

The report is essential for CISOs, CIOs, CTOs, and heads of information security responsible for safeguarding critical infrastructure, sensitive data, and long-term digital trust. It provides a comprehensive view of the quantum threat landscape, offers a roadmap to assess quantum readiness, and actionable strategies for building quantum-safe organisations, including:

  • Conducting quantum risk assessments and maintaining a live cryptographic inventory
  • Driving enterprise-wide education and establishing a governance structure that keeps quantum security on the C-suite agenda
  • Designing for crypto-agility to adapt as standards evolve.

To learn how organisations can protect against tomorrow’s quantum threats, download the report today.