48AF3A60-914C-4C95-B1E0-3397FF00C1E9 Created with sketchtool.
Calculator
North America, Retail & Wholesale, 1 000 employees
7E919FA3-84AA-4530-B42D-91BADB226992 Created with sketchtool.
  • All
  • APAC
  • China
  • Europe
  • Japan
  • LATAM
  • META
  • North America
  • Russia
7E919FA3-84AA-4530-B42D-91BADB226992 Created with sketchtool.
  • All
  • Financial Services
  • Government
  • Industrial/Manufacturing
  • IT & Telecoms
  • Retail & Wholesale
$
Calculate

You are very close to another segment. Would you like to see the results for companies with 250 - 999 employees?

Go
Calculate your company's security profile

This is the ultimate guide to the cost of IT security. Select the details that match your company to see the average budgets your industry peers spend on IT security (by region, industry, size), what security measures they take, the major threat vectors they encounter, how much money they lose as a result, and what you can do to avoid being compromised. The Calculator has been created as an adjustable tool. The data presented can be updated and/or added to over time based on insights from customers and Kaspersky.

IT security budget in 2020
Data provided by 17 respondents*
North America, Retail & Wholesale, 1 000 employees
IT Security budget makes up 16% of the total IT spend
View analytics for previous years
average
$ 5 861 663
average
$ 5 861 663
max
$ 75 000 000
2020
2023
Expected change to IT security budget in three years
+ 10 %
year
2020
2023
YoY Dynamics
Find out data for my company
Threats experienced in the last 12 months
Data provided by 20 respondents*
North America, Retail & Wholesale, 1 000 employees
50%
Targeted attacks
45%
DDoS attacks
45%
Inappropriate sharing of data via mobile devices
40%
Data breach
40%
Physical loss of company owned mobile devices exposing the organization to risk
40%
Phishing / social engineering attacks on accounts
40%
Incidents involving non-computing connected devices
40%
Incidents affecting IT Infrastructure hosted by a third party
35%
Incidents affecting virtualized environments
35%
Attacks on local / branch offices of our company
35%
Malware infection of BYOD devices
35%
Cryptomalware/ransomware
35%
Supply chain attacks
35%
Attacks on point-of-sale (POS) systems
35%
Incidents affecting suppliers that the business shares data with
30%
Viruses & malware
30%
Cryptomining attacks
30%
IT Security policies violation by employees
30%
Physical loss of BYOD devices
30%
Incidents affecting third party cloud services used by the business
25%
Fileless attacks
25%
Inappropriate IT resource use by employees
20%
Electronic leakage of data from internal systems
20%
Physical loss of devices or media
85%
Any cyberthreat
$ 669 453
Average cost of one incident
Security measures in place
Data provided by 19 respondents*
North America, Retail & Wholesale, 1 000 employees
95%
Network Securitу
89%
Mobile Security
89%
Web Security
84%
Services - Threat intelligence
84%
Cloud Workload Security
84%
Storage array / network attached storage security software
79%
Services - Incident Response
74%
Messaging Security
74%
Security for Virtualization
74%
Advanced Persistent Threat (APT) Protection
74%
Security solutions specifically designed for SaaS applications
74%
Services - Security Education & Training
70%
Endpoint Protection**
68%
Network Sandboxing
68%
Anti-DDoS Protection
68%
Services - Security Assessment
68%
Industrial Cybersecurity
63%
Container Security
63%
Services - Managed Detection & Response
58%
IoT - Transportation Security
58%
SIEM
47%
SOAR
Recommendations

Retail and wholesale companies rely heavily on the staff they employ. In the digital age, they encounter cyberthreats such as malware, the inappropriate use of IT infrastructure by staff, and the physical loss of devices or media containing sensitive data. While the malware threat can be effectively mitigated by up-to-date information security solutions, including security solutions for POS terminals, the only way to improve the IT security performance of staff is through regular cyber-awareness training.

Retail and wholesale companies in North America have to deal mostly with targeted attacks and incidents affecting IT infrastructure hosted by third parties. In addition, recent incidents with ransomware have highlighted the weak points in these organizations' cyber defenses. Thus, we recommend implementing anti-targeted attack solutions and data center security solutions, in addition to security solutions that are proven to be efficient against ransomware and include special protection for embedded devices.

Want to see more statistics?
Fill out this form to download the IT security economics 2020 executive summary: «Investment adjustment: aligning IT budgets with changing security priorities»
Download report
Need help with IT security?
Fill out this form and Kaspersky experts will get in touch
Contact me
*These statistics are based on results from an online survey of 5,266 business representatives from companies with 50 and up to 4,999 employees around the world, conducted in 2020 by Kaspersky and B2B International. Statistics based on less than 30 respondents should be used with caution, due to this being a low base. The significant increase in the IT security budget in 2020 may be caused by the change of the survey sample for several verticals and significant fluctuations in budgets in these verticals.

** The methodology for measuring endpoint protection has been changed: now it represents the penetration of endpoint protection in businesses meaning the proportion of corporate endpoints (both physical devices and virtual endpoints) that have endpoint security software installed in the average organization of this vertical and segment.

We use cookies to make your experience of our websites better. By using and further navigating this website you accept this. Detailed information about the use of cookies on this website is available by clicking on more information

Accept and Close