Indian companies are increasing their investment in cybersecurity tools, including AI and detection systems, yet many face significant execution gaps. Challenges include weak control over third-party vendors and untested response plans, leaving them vulnerable to real-world attacks like ransomware and supply-chain breaches. The paradox lies in purchasing more tools while struggling with effective utilization and vendor risk management, despite high confidence levels.