Fortress MSSP is conducting original research on the cybersecurity posture of New York City-area mid-market organizations. Results will be published as a free report in Q3 2026.
All respondents receive the full report before public release — and your responses are anonymized in every published finding.
Enter your email to receive the survey link and the published report when complete.
All responses are anonymized in the published report.
The State of NYC SMB Security 2026 is an original research initiative by Fortress MSSP. We are surveying 50+ IT leaders, business owners, and compliance officers at NYC-area mid-market organizations — defined as companies with 50 to 2,000 employees operating in the New York metropolitan area.
How many NYC mid-market organizations experienced a breach or attempted intrusion in the past 24 months — and which attack vectors were most common.
Self-reported compliance readiness across 23 NYCRR 500 requirements, including where organizations are falling behind post-2023 amendments.
How NYC mid-market organizations allocate security budgets across financial services, healthcare, legal, and technology sectors.
The controls most frequently missing or misconfigured in NYC SMB environments — ranked by frequency and risk severity.
Coverage rates, premium trends, and the security controls insurers are increasingly requiring before issuing policies.
What IT leaders and business owners identify as their most pressing security concerns for the coming 18 months.
No identifying information about your organization will be published.
About the Publisher
Fortress MSSP LLC is a New York City-based Managed Security Service Provider specializing in enterprise network security and penetration testing for financial services, healthcare, and mid-market organizations. This research is published to advance cybersecurity awareness in the NYC business community. Fortress MSSP does not sell respondent data. Learn more about Fortress MSSP.