Over half of organisations have had a data breach, and more than three in every five of them suffer from unplanned downtime on a monthly basis, according to a new report from Splunk.
For the State of Security 2023, a global survey was conducted from mid-November 2022 through early January 2023 in partnership with the Enterprise Strategy Group.
The 1,520 respondents — IT and security leaders and practitioners who spend more than half their time on security issues — were drawn from Australia, Canada, France, Germany, India, Japan, New Zealand, Singapore, the United Kingdom and the United States.
According to the report, over half (52%) of organisations around the world say they have suffered a data breach in the past two years, an increase from 49% in 2022 earlier and 39% in 2021.
In addition, 62% of respondents report that their business-critical applications have suffered from unplanned downtime due to a cybersecurity incident on at least a monthly basis, an increase from 54% in 2022.
Findings from Singapore also show that just 27% of respondents say that their organisation will increase spending significantly over the next 12-24 months, in contrast to 59% across the rest of the world.
Among local companies, 23% are less likely to report software supply chain security as a top area of focus for the coming year compared to 33% in the rest of the world.
Only 38% of Singapore organisations say they’ve significantly increased their focus following recent software supply chain attacks, against 70% of respondents in the rest of the world.
Companies in Singapore are less likely to say that their organisation has implemented, or increased investment in, key controls to help with ransomware.
Only 17% in Singapore implemented ransomware detection rules, lower than 26% in the rest of the world.
Companies across the APAC region prioritise investment in staff training and commercial security controls to overcome talent challenges.
“In the organisations we’ve worked with, resilience has been strongest with a collaborative approach in everything, from software development and infrastructure monitoring to business continuity planning,” said Ryan Kovar, Distinguished Security Strategist for Splunk.
“This approach brings everyone to the table, including security leaders with IT and business leaders, so they all can focus on protecting the organisation,” said Kovar.
