48AF3A60-914C-4C95-B1E0-3397FF00C1E9 Created with sketchtool.
Calculator
North America, IT & Telecoms, 4 999 employees
7E919FA3-84AA-4530-B42D-91BADB226992 Created with sketchtool.
  • All
  • APAC
  • China
  • Europe
  • Japan
  • LATAM
  • META
  • North America
  • Russia
7E919FA3-84AA-4530-B42D-91BADB226992 Created with sketchtool.
  • All
  • Financial Services
  • Government
  • Industrial/Manufacturing
  • IT & Telecoms
  • Retail & Wholesale
$
Calculate
Calculate your company's security profile

This is the ultimate guide to the cost of IT security. Select the details that match your company to see the average budgets your industry peers spend on IT security (by region, industry, size), what security measures they take, the major threat vectors they encounter, how much money they lose as a result, and what you can do to avoid being compromised. The Calculator has been created as an adjustable tool. The data presented can be updated and/or added to over time based on insights from customers and Kaspersky.

IT security budget in 2021

Data provided by 40 respondents*
North America, IT & Telecoms, 4 999 employees
IT Security budget makes up 30% of the total IT spend
View analytics for previous years
average
$ 10 943 403
average
$ 10 943 403
max
$ 67 500 000
2021
2024
Expected change to IT security budget in three years
+ 5 %
year
2021
2024
YoY Dynamics
Find out data for my company

Threats experienced in the last 12 months

Data provided by 44 respondents*
North America, IT & Telecoms, 4 999 employees
66%
Data breach
64%
Inappropriate sharing of data via mobile devices
61%
Cryptomalware/ransomware
59%
Phishing / social engineering attacks on accounts
59%
Attacks on local / branch offices of our company
59%
Malware infection of BYOD devices
59%
Supply chain attacks
59%
Viruses & malware
59%
Attacks on point-of-sale (POS) systems
57%
Incidents involving non-computing connected devices
57%
Physical loss of devices or media
57%
Physical loss of BYOD devices
55%
Inappropriate IT resource use by employees
55%
DDoS attacks
55%
Incidents affecting suppliers that the business shares data with
55%
Physical loss of company owned mobile devices exposing the organization to risk
55%
Targeted attacks
52%
Fileless attacks
52%
Electronic leakage of data from internal systems
50%
Cryptomining attacks
50%
IT Security policies violation by employees
27%
Incidents affecting IT Infrastructure hosted by a third party
25%
Incidents affecting virtualized environments
23%
Incidents affecting third party cloud services used by the business
84%
Any cyberthreat
$ 791 698
Average cost of one incident

Security measures in place

Data provided by 22 respondents*
North America, IT & Telecoms, 4 999 employees
56%
Endpoint Protection**
95%
Web Security
95%
Cloud Workload Security
91%
Network Securitу
91%
Storage array / network attached storage security software
86%
Services - Threat intelligence
86%
Industrial Cybersecurity
86%
Mobile Security
86%
Messaging Security
86%
Services - Managed Detection & Response
86%
Security for Virtualization
86%
Security solutions specifically designed for SaaS applications
82%
Services - Security Education & Training
82%
Container Security
82%
Network Sandboxing
77%
Services - Incident Response
77%
Anti-DDoS Protection
77%
Services - Security Assessment
68%
SIEM
68%
IoT - Transportation Security
64%
Advanced Persistent Threat (APT) Protection
59%
SOAR
Recommendations

IT and telecoms companies, data centers and cloud infrastructures, are at the forefront of implementing the newest technological advances, but they are also at the forefront when it comes to encountering the most cyber threats. They have one of the highest rates of virtual infrastructure cyber incidents, not to mention the fact they have to fight off huge amounts of malware and encounter DDoS and similar attacks every day. This means that, besides building a multi-layered defense against malware, they should be using specialized security solutions optimized for virtual environments, and should invest in cyber-awareness training for their staff. Only complete fully-fledged cybersecurity solutions for data centers and cloud-based systems can ensure the continuity of service that is such an important customer consideration for these organizations when they are selecting or changing provider.

North America is one of the most developed regions from an IT and telecommunications standpoint, making this area a high priority for attackers armed with the latest cyberthreats. North American IT and telecoms companies regularly find themselves the subject of targeted attacks and encounter incidents on infrastructure hosted by third parties, during data exchange with partners, and with cloud services. So, North American telecoms companies should be ready to be 'early adopters' implementing all the latest IT security technologies e.g. anti-targeted attack solutions, cloud security, EDR and threat intelligence, as soon as they become available.

Want to see more statistics?
Fill out this form to download the report “IT Security Economics 2021: Managing the trend of growing IT complexity”
Download report
Need help with IT security?
Fill out this form and Kaspersky experts will get in touch
Contact me

*These statistics are based on results from an online survey of 3,063 business representatives from companies with 50 and up to 4,999 employees around the world, conducted in 2021 by Kaspersky and B2B International. Statistics based on less than 30 respondents should be used with caution, due to this being a low base.

** The methodology for measuring endpoint protection represents the penetration of endpoint protection in businesses meaning the proportion of corporate endpoints (both physical devices and virtual endpoints) that have endpoint security software installed in the average organization of this vertical and segment

We use cookies to make your experience of our websites better. By using and further navigating this website you accept this. Detailed information about the use of cookies on this website is available by clicking on more information

Accept and Close