This study identifies a critical strategic-execution gap in corporate cybersecurity, driven primarily by resource constraints, acute shortages of specialized talent, and organizational cultural resistance. Drawing on a mixed-methods survey of 1,083 managers across Europe, the UK, and the US—including structured questionnaires, cross-national comparative analysis, descriptive statistics, and thematic coding—the research systematically uncovers previously undocumented international associations among firm size, technological intensity, and strategic proactivity: large enterprises and high-tech firms exhibit stronger proactive defense postures, whereas SMEs display marked strategic divergence. The study introduces and empirically validates an innovative “leadership-driven–employee-engagement” dual-pathway model as pivotal to bridging the strategy-execution divide. Furthermore, it confirms a paradigmatic shift: cybersecurity is no longer merely a cost center but a source of sustainable competitive differentiation. (149 words)

This study examines the strategic role of cybersecurity based on survey data from 1,083 managers across Europe, the UK, and the United States. The findings indicate growing recognition of cybersecurity as a source of competitive advantage, although firms continue to face barriers such as limited resources, talent shortages, and cultural resistance. Larger and high-tech firms tend to adopt more proactive strategies, while SMEs and low-tech sectors display greater variability. Key managerial tensions emerge in balancing security with innovation and agility. Notable country-level differences are observed across Europe, the UK, and the United States. Across all contexts, leadership and employee engagement appear central to closing the gap between strategic intent and operational practice.