48AF3A60-914C-4C95-B1E0-3397FF00C1E9 Created with sketchtool.
Calculator
North America, All industries, 999 employees
7E919FA3-84AA-4530-B42D-91BADB226992 Created with sketchtool.
  • All
  • APAC
  • China
  • Europe
  • Japan
  • LATAM
  • META
  • North America
  • Russia
7E919FA3-84AA-4530-B42D-91BADB226992 Created with sketchtool.
  • All
  • Financial Services
  • Government
  • Industrial/Manufacturing
  • IT & Telecoms
  • Retail & Wholesale
$
Calculate

You are very close to another segment. Would you like to see the results for companies with 1000 - 4999 employees?

Go
Calculate your company's security profile

This is the ultimate guide to the cost of IT security. Select the details that match your company to see the average budgets your industry peers spend on IT security (by region, industry, size), what security measures they take, the major threat vectors they encounter, how much money they lose as a result, and what you can do to avoid being compromised. The Calculator has been created as an adjustable tool. The data presented can be updated and/or added to over time based on insights from customers and Kaspersky.

IT security budget in 2020
Data provided by 221 respondents*
North America, All industries, 999 employees
IT Security budget makes up 25% of the total IT spend
View analytics for previous years
average
$ 359 731
average
$ 359 731
max
$ 1 718 750
2020
2023
Expected change to IT security budget in three years
+ 3 %
year
2020
2023
YoY Dynamics
Find out data for my company
Threats experienced in the last 12 months
Data provided by 237 respondents*
North America, All industries, 999 employees
44%
Data breach
44%
IT Security policies violation by employees
44%
Viruses & malware
41%
Malware infection of BYOD devices
41%
Inappropriate IT resource use by employees
39%
Physical loss of company owned mobile devices exposing the organization to risk
39%
Inappropriate sharing of data via mobile devices
37%
Physical loss of devices or media
37%
Phishing / social engineering attacks on accounts
36%
Cryptomalware/ransomware
36%
DDoS attacks
36%
Targeted attacks
33%
Attacks on local / branch offices of our company
33%
Physical loss of BYOD devices
33%
Incidents involving non-computing connected devices
32%
Cryptomining attacks
32%
Supply chain attacks
32%
Electronic leakage of data from internal systems
30%
Fileless attacks
30%
Incidents affecting suppliers that the business shares data with
24%
Incidents affecting IT Infrastructure hosted by a third party
22%
Incidents affecting virtualized environments
21%
Attacks on point-of-sale (POS) systems
17%
Incidents affecting third party cloud services used by the business
5%
Financial losses due to attacks on ATM
5%
Attacks on core transactional / back office systems
5%
Attacks on online banking services
75%
Any cyberthreat
$ 63 281
Average cost of one incident
Security measures in place
Data provided by 178 respondents*
North America, All industries, 999 employees
92%
Network Securitу
85%
Web Security
77%
Mobile Security
74%
Storage array / network attached storage security software
74%
Cloud Workload Security
74%
Security for Virtualization
72%
Messaging Security
71%
Services - Managed Detection & Response
70%
Services - Threat intelligence
70%
Endpoint Protection**
69%
Services - Incident Response
69%
Anti-DDoS Protection
67%
Services - Security Education & Training
67%
Security solutions specifically designed for SaaS applications
65%
Industrial Cybersecurity
65%
Network Sandboxing
65%
Services - Security Assessment
64%
Container Security
63%
Advanced Persistent Threat (APT) Protection
61%
IoT - Transportation Security
48%
SIEM
39%
SOAR
16%
Services - Industrial Cybersecurity Assessment
Recommendations

For companies working with government entities it is imperative to be 100% compliant with national legislature. Among the top concerns for your company are incidents with malware and the inappropriate use of IT resources by staff. While the first concern is effectively addressed by a comprehensive multi-layered security solution, the second requires raising cyber awareness among employees with training from cybersecurity professionals.

North American government institutions have been affected by targeted attacks with increasing frequency. This requires them to have stronger anti-targeted attack capabilities and better train their security professionals.

Want to see more statistics?
Fill out this form to download the IT security economics 2020 executive summary: «Investment adjustment: aligning IT budgets with changing security priorities»
Download report
Need help with IT security?
Fill out this form and Kaspersky experts will get in touch
Contact me
*These statistics are based on results from an online survey of 5,266 business representatives from companies with 50 and up to 4,999 employees around the world, conducted in 2020 by Kaspersky and B2B International. Statistics based on less than 30 respondents should be used with caution, due to this being a low base. The significant increase in the IT security budget in 2020 may be caused by the change of the survey sample for several verticals and significant fluctuations in budgets in these verticals.

** The methodology for measuring endpoint protection has been changed: now it represents the penetration of endpoint protection in businesses meaning the proportion of corporate endpoints (both physical devices and virtual endpoints) that have endpoint security software installed in the average organization of this vertical and segment.

We use cookies to make your experience of our websites better. By using and further navigating this website you accept this. Detailed information about the use of cookies on this website is available by clicking on more information

Accept and Close