48AF3A60-914C-4C95-B1E0-3397FF00C1E9 Created with sketchtool.
Calculator
All regions, All industries, All company sizes
7E919FA3-84AA-4530-B42D-91BADB226992 Created with sketchtool.
  • All
  • APAC
  • China
  • Europe
  • Japan
  • LATAM
  • META
  • North America
  • Russia
7E919FA3-84AA-4530-B42D-91BADB226992 Created with sketchtool.
  • All
  • Financial Services
  • Government
  • Industrial/Manufacturing
  • IT & Telecoms
  • Retail & Wholesale
$
Calculate
Calculate your company's security profile

This is the ultimate guide to the cost of IT security. Select the details that match your company to see the average budgets your industry peers spend on IT security (by region, industry, size), what security measures they take, the major threat vectors they encounter, how much money they lose as a result, and what you can do to avoid being compromised. The Calculator has been created as an adjustable tool. The data presented can be updated and/or added to over time based on insights from customers and Kaspersky.

IT security budget in 2021

Data provided by 3 063 respondents*
All regions, All industries, All company sizes
IT Security budget makes up 25% of the total IT spend
View analytics for previous years
average
$ 755 729
average
$ 755 729
max
$ 8 437 500
2021
2024
Expected change to IT security budget in three years
+ 12 %
year
2021
2024
YoY Dynamics
Find out data for my company

Threats experienced in the last 12 months

Data provided by 3 482 respondents*
All regions, All industries, All company sizes
46%
Data breach
42%
Inappropriate IT resource use by employees
42%
Viruses & malware
41%
IT Security policies violation by employees
38%
Malware infection of BYOD devices
37%
Physical loss of company owned mobile devices exposing the organization to risk
37%
Physical loss of devices or media
35%
Inappropriate sharing of data via mobile devices
35%
Phishing / social engineering attacks on accounts
34%
DDoS attacks
34%
Targeted attacks
33%
Cryptomalware/ransomware
33%
Physical loss of BYOD devices
32%
Attacks on local / branch offices of our company
32%
Incidents involving non-computing connected devices
32%
Incidents affecting suppliers that the business shares data with
32%
Electronic leakage of data from internal systems
31%
Cryptomining attacks
31%
Fileless attacks
30%
Supply chain attacks
20%
Incidents affecting virtualized environments
20%
Incidents affecting IT Infrastructure hosted by a third party
15%
Incidents affecting third party cloud services used by the business
14%
Attacks on point-of-sale (POS) systems
5%
Financial losses due to attacks on ATM
5%
Attacks on online banking services
4%
Attacks on core transactional / back office systems
75%
Any cyberthreat
$ 255 623
Average cost of one incident

Security measures in place

Data provided by 2 301 respondents*
All regions, All industries, All company sizes
64%
Endpoint Protection**
83%
Network Securitу
80%
Web Security
72%
Mobile Security
71%
Storage array / network attached storage security software
69%
Security for Virtualization
68%
Cloud Workload Security
66%
Messaging Security
66%
Services - Security Assessment
65%
Services - Threat intelligence
65%
Anti-DDoS Protection
64%
Services - Incident Response
64%
Services - Security Education & Training
62%
Security solutions specifically designed for SaaS applications
62%
Industrial Cybersecurity
61%
Advanced Persistent Threat (APT) Protection
61%
Services - Managed Detection & Response
59%
Container Security
58%
Network Sandboxing
54%
IoT - Transportation Security
50%
SIEM
44%
SOAR
15%
Services - Industrial Cybersecurity Assessment
Want to see more statistics?
Fill out this form to download the report “IT Security Economics 2021: Managing the trend of growing IT complexity”
Download report
Need help with IT security?
Fill out this form and Kaspersky experts will get in touch
Contact me

*These statistics are based on results from an online survey of 3,063 business representatives from companies with 50 and up to 4,999 employees around the world, conducted in 2021 by Kaspersky and B2B International. Statistics based on less than 30 respondents should be used with caution, due to this being a low base.

** The methodology for measuring endpoint protection represents the penetration of endpoint protection in businesses meaning the proportion of corporate endpoints (both physical devices and virtual endpoints) that have endpoint security software installed in the average organization of this vertical and segment

We use cookies to make your experience of our websites better. By using and further navigating this website you accept this. Detailed information about the use of cookies on this website is available by clicking on more information

Accept and Close