48AF3A60-914C-4C95-B1E0-3397FF00C1E9 Created with sketchtool.
Calculator
APAC, All industries, 249 employees
7E919FA3-84AA-4530-B42D-91BADB226992 Created with sketchtool.
  • All
  • APAC
  • China
  • Europe
  • Japan
  • LATAM
  • META
  • North America
  • Russia
7E919FA3-84AA-4530-B42D-91BADB226992 Created with sketchtool.
  • All
  • Financial Services
  • Government
  • Industrial/Manufacturing
  • IT & Telecoms
  • Retail & Wholesale
$
Calculate

You are very close to another segment. Would you like to see the results for companies with 250 - 999 employees?

Go
Data collected separately for Japan from 2020. Choose Japan the region to see data for Japan from 2020
Calculate your company's security profile

This is the ultimate guide to the cost of IT security. Select the details that match your company to see the average budgets your industry peers spend on IT security (by region, industry, size), what security measures they take, the major threat vectors they encounter, how much money they lose as a result, and what you can do to avoid being compromised. The Calculator has been created as an adjustable tool. The data presented can be updated and/or added to over time based on insights from customers and Kaspersky.

IT security budget in 2020
Data provided by 111 respondents*
APAC, All industries, 249 employees
IT Security budget makes up 25% of the total IT spend
View analytics for previous years
average
$ 307 133
average
$ 307 133
max
$ 2 406 250
2020
2023
Expected change to IT security budget in three years
+ 9 %
year
2020
2023
YoY Dynamics
Find out data for my company
Threats experienced in the last 12 months
Data provided by 118 respondents*
APAC, All industries, 249 employees
53%
Data breach
53%
Malware infection of BYOD devices
51%
Viruses & malware
48%
Inappropriate IT resource use by employees
47%
Inappropriate sharing of data via mobile devices
46%
IT Security policies violation by employees
44%
Incidents involving non-computing connected devices
44%
Cryptomining attacks
43%
Cryptomalware/ransomware
43%
Phishing / social engineering attacks on accounts
42%
Electronic leakage of data from internal systems
42%
Physical loss of devices or media
41%
Targeted attacks
40%
Incidents affecting suppliers that the business shares data with
40%
DDoS attacks
40%
Physical loss of company owned mobile devices exposing the organization to risk
39%
Fileless attacks
39%
Attacks on local / branch offices of our company
38%
Physical loss of BYOD devices
37%
Supply chain attacks
31%
Incidents affecting virtualized environments
29%
Incidents affecting IT Infrastructure hosted by a third party
19%
Incidents affecting third party cloud services used by the business
16%
Attacks on point-of-sale (POS) systems
4%
Attacks on core transactional / back office systems
3%
Financial losses due to attacks on ATM
3%
Attacks on online banking services
82%
Any cyberthreat
$ 134 723
Average cost of one incident
Security measures in place
Data provided by 81 respondents*
APAC, All industries, 249 employees
86%
Web Security
79%
Industrial Cybersecurity
77%
Storage array / network attached storage security software
74%
Network Securitу
69%
Cloud Workload Security
68%
Security for Virtualization
67%
Advanced Persistent Threat (APT) Protection
67%
Services - Threat intelligence
67%
Services - Incident Response
65%
Services - Security Assessment
65%
Services - Managed Detection & Response
64%
Anti-DDoS Protection
64%
Messaging Security
63%
Endpoint Protection**
62%
Mobile Security
60%
Services - Security Education & Training
59%
Network Sandboxing
59%
Security solutions specifically designed for SaaS applications
59%
Container Security
59%
IoT - Transportation Security
54%
SIEM
52%
SOAR
20%
Services - Industrial Cybersecurity Assessment
Recommendations

Telecom companies, data centers and cloud infrastructure are frequent targets for cyberattacks. You will be the first line of defense for your clients in the case of a malware outbreak. Thus, you are encouraged to deploy a comprehensive multi-layered cybersecurity solution. Another big problem for this sector is the inappropriate use of IT resources by staff, which cannot be solved without regular cyber awareness training.

In order to ensure resilience of your online services against DDoS attacks, make sure that you implement an integrated DDoS mitigation strategy. Incidents with data sharing and the physical loss of devices or media is another big issue for your region, demanding special attention during cybersecurity training.

Want to see more statistics?
Fill out this form to download the IT security economics 2020 executive summary: «Investment adjustment: aligning IT budgets with changing security priorities»
Download report
Need help with IT security?
Fill out this form and Kaspersky experts will get in touch
Contact me
*These statistics are based on results from an online survey of 5,266 business representatives from companies with 50 and up to 4,999 employees around the world, conducted in 2020 by Kaspersky and B2B International. Statistics based on less than 30 respondents should be used with caution, due to this being a low base. The significant increase in the IT security budget in 2020 may be caused by the change of the survey sample for several verticals and significant fluctuations in budgets in these verticals.

** The methodology for measuring endpoint protection has been changed: now it represents the penetration of endpoint protection in businesses meaning the proportion of corporate endpoints (both physical devices and virtual endpoints) that have endpoint security software installed in the average organization of this vertical and segment.

We use cookies to make your experience of our websites better. By using and further navigating this website you accept this. Detailed information about the use of cookies on this website is available by clicking on more information

Accept and Close