Research released by Fastly, a global edge cloud platform, titled Fighting Fire With Fire, finds that over three-quarters (78%) of Australian and New Zealand organizations are increasing their cybersecurity spending to protect themselves against future risks with AU$95,000 spent annually just on web applications and API security control and tools.
However, despite this increased budget with 59% agreeing that their organization’s allocated budget appropriately addresses cybersecurity risk, IT leaders are investing poorly. The result of this is that only 60% of cybersecurity tools are fully active or deployed.
Similarly, due to a scattergun approach to cybersecurity implementation, 38% of these tools overlap, protecting organizations against the same threats and when these tools do run, they often suffer from too many false positives. For example, 42% of alerts detected by organizations’ WAFs are false positives.
As part of this research, IT leaders also predicted the biggest threats to their organization in the next 12 months, with 37% highlighting data breaches and data loss, 33% phishing and 27% malware as their key areas for concern.
Although 76% of organizations are confident in their organization’s ability to protect itself against the current cybersecurity threat landscape, the other primary area of concern for these organizations is securing remote workers. Eighty-five percent of IT leaders surveyed expressed concern about the effect of adopting a remote work culture since the pandemic on their cybersecurity strategy.
Indeed, over half (53%) predict that ‘cyberattacks on remote workers’ will drive cybersecurity threats over the next 12 months. As a result, 49% say improving cybersecurity skills through training and or talent acquisition is a security priority over the next year while another top priority includes making cybersecurity more accessible to meet usability requirements.
At the same time, more than two-thirds (67%) of organizations are less confident in their ability to hire talent sufficiently qualified to keep up with changing security technologies. Just under half of organizations (48%) feel there is a lack of experience with relevant security technologies among the current talent pool when it comes to cybersecurity.
The full report contains the five fundamental steps organizations can take to improve their cybersecurity posture, removing unnecessary complexity in the process.