This is the ultimate guide to the cost of IT security. Select the details that match your company to see the average budgets your industry peers spend on IT security (by region, industry, size), what security measures they take, the major threat vectors they encounter, how much money they lose as a result, and what you can do to avoid being compromised. The Calculator has been created as an adjustable tool. The data presented can be updated and/or added to over time based on insights from customers and Kaspersky.
IT security budget in 2020
Data provided by 152 respondents*
North America, All industries, 4 999 employees
IT Security budget makes up 26% of the total IT spend
View analytics for previous years
average
$ 11 513 916
average
$ 11 513 916
max
$ 140 625 000
2020
2023
Expected change to IT security budget in three years
+ 8 %
year
2020
2023
YoY Dynamics
Find out data for my company
Threats experienced in the last 12 months
Data provided by 165 respondents*
North America, All industries, 4 999 employees
49%
Data breach
47%
Viruses & malware
44%
IT Security policies violation by employees
44%
Inappropriate IT resource use by employees
43%
Phishing / social engineering attacks on accounts
42%
DDoS attacks
42%
Targeted attacks
42%
Malware infection of BYOD devices
42%
Inappropriate sharing of data via mobile devices
41%
Physical loss of company owned mobile devices exposing the organization to risk
40%
Incidents affecting suppliers that the business shares data with
Government organizations are a key target for cyber-terrorism and state-sponsored attacks, so we recommend investment in a targeted attack detection and mitigation strategy, including empowering the SOC with the most advanced possible threat intelligence. It’s also important for government bodies to be fully aware of high profile cyber-espionage campaigns through comprehensive, practical reporting from security knowledge providers. Compliance is a big issue for government organizations, so we also recommend using an on-demand version of threat intelligence for isolated networks, where regulation excludes any data transfer outside the IT system's perimeter. To educate employees about the cyberthreats and behaviors that put government bodies at risk, it is highly recommended that organizations conduct cybersecurity awareness training among staff.
North America is one of the most developed regions from an IT and telecommunications standpoint, making this area a high priority for attackers armed with the latest cyberthreats. Government institutions in North America have been affected by targeted attacks with increasing frequency. This means they need to increase their anti-targeted attack capabilities, better train their security professionals and establish a firm contract with a renowned cybersecurity services provider.
Want to see more statistics?
Fill out this form to download the IT security economics 2020 executive summary: «Investment adjustment: aligning IT budgets with changing security priorities»
*These statistics are based on results from an online survey of 5,266 business representatives from companies with 50 and up to 4,999 employees around the world, conducted in 2020 by Kaspersky and B2B International. Statistics based on less than 30 respondents should be used with caution, due to this being a low base. The significant increase in the IT security budget in 2020 may be caused by the change of the survey sample for several verticals and significant fluctuations in budgets in these verticals.
** The methodology for measuring endpoint protection has been changed: now it represents the penetration of endpoint protection in businesses meaning the proportion of corporate endpoints (both physical devices and virtual endpoints) that have endpoint security software installed in the average organization of this vertical and segment.
We use cookies to make your experience of our websites better. By using and further navigating this website you accept this. Detailed information about the use of cookies on this website is available by clicking on
more information