Global cybersecurity spending is expected to approach US$ 200 billion by 2025. Having progressively increased their cybersecurity investments over the years, there is a false sense of security and control among organizations: in the latest edition of an annual survey, only 48% of CISOs felt their organization was at risk of suffering a serious attack in the next 12 months, versus 64% last year. But the report says that this confidence is more likely post-pandemic optimism than any real improvement in preparedness; even today, 50% of the organizations are ill-equipped to handle a targeted attack.
While investment is important, simply throwing more money at the problem will not make it go away. Organizations need a change in security mindset to improve their security posture. Here are some suggestions for how they can achieve it: