IDC recently published the Asia Pacific excluding Japan (APeJ) Security and Trust Study 2022 that reveals 69% of CEOs are now engaged in cybersecurity interactions either weekly (37.2) or bi-weekly (31.5%), supporting the ongoing importance of cybersecurity to the business. However, complexity, legacy, and ill-defined roles and responsibilities still hamper more effective approaches to addressing this complex issue.
Key findings are that the ongoing complexity of IT systems, along with evolving regulations are the major challenges faced by IT security professionals. While the C-Suite is paying more attention to the issue of security, there are many infrastructural issues across people and processes that, unless the C-Suite decides to address, will continue to be problematic.
“Even today most security technology acquisitions are reacting to the current perceived threat, and this has been the case for many years now,” says Simon Piff, VP of Trust and Security Research, IDC Asia/Pacific. “What is required is a more strategic and holistic approach to addressing the myriad of threats and challenges, whilst moving to simplify the technology stack and its integrations. Key technologies such as AI/analytics, security automation, and cybersecurity infrastructure modernization are low on the investment agenda, where the focus is on risk management, KPIs, and development of processes,” Piff adds.
This IDC study will better help technology vendors align their messaging to the needs of the security decision-making unit within the target markets. Additionally, this study investigates how cyber security is addressed at a people, process, and technology level, and looks specifically into:
- Perceived Threats;
- Risk Management Processes;
- Planned Investment Areas; and
- Overall Understanding and Attitude Towards the Concept of Trust