Businesses around the world will increase their cyber security investment by a third over the next four years, reaching a collective annual spend of $134bn (£95bn) by 2022.
That is according to a new report by Juniper Research, which predicts that 70% of this spending will come from medium-sized businesses, with cyber criminals increasingly seeing these firms as “low-hanging fruit”.
It also forecasts that the cumulative cost of data breaches between 2017 and 2022 will reach $8trn, urging companies to plan in terms of risk mitigation rather than prevention.
This is expected to involve service providers in high-risk environments restructuring their networks to avoid potential compliance breaches, data theft or service outage.
“Once a single endpoint is breached, the big danger is lateral movement across the network,” report author, Steffen Sorrell, said. “Layered networks, proper lifecycle management and user ‘least privilege’ approaches will prove key to containing serious breaches.”
The report states that the Internet of Things (IoT) will be a key catalyst for the increase in cyber security spending for financial services firms over the next few years.
It anticipates that 46 billion units will be connected by 2021, and argues it is essential that firms develop cyber strategies that are flexible enough to react to future demands.
This comes after a report by Scrutinise Research and Analytics last year warned that the rising number of IoT products made it increasingly necessary for international standards and regulations to be agreed.
It states that manufacturers are rushing products to the market with little thought for security, leaving devices more and more open to malware and cyber attacks.
“Given that the proliferation of connected devices includes medical equipment, connected cars and power plants, urgent action is needed to improve the security of these devices,” Scrutinise Research and Analysis, senior analyst, Sacha Kavanagh, said.
“Doing this will help ensure we are not vulnerable to those who might seek to exploit current weaknesses. Everyone in the IoT ecosystem shares a responsibility to improve security.”
The average number of cyber attacks with the potential to cause damage or result in the loss of high-value assets more than doubled in the first month of this year per organisation compared to in January 2017.
17 April 2018
Approximately one-third of UK business leaders would pay a ransom if they suffered a cyber attack, with one in ten willing to fork out £1m or more to get their systems and data back.
04 April 2018
Financial institutions across the world are increasingly turning to technology to manage a growing number of digital threats and regulatory requirements.
03 April 2018
Why InsurTech? A Pressured Insurance Value Chain
By Andrew Sagon, Andrew Johnston and Matthew Wong
InsurTech is a burgeoning phenomenon that is modernising the insurance industry. It is disrupting the traditional value chain whereby insurers offer loss protection, and shifting the emphasis to risk mitigation. Incumbents face disintermediation as investors in search of higher yields pour money into insurance-linked instruments in the capital markets. And entrepreneurial businesses are targeting friction costs and inefficiencies within every aspect of the traditional value chain.
Nimbleness and agility will unlock potential
By Elinor Friedman, Andrew Harley and Klayton Southwood
Recent Willis Towers Watson surveys in the U.S. have shown that P&C and life insurers in developed markets are taking seriously the potential of big data and predictive analytics to improve their businesses. Nimbleness and agility, rather than brute force, are likely to be key to realizing that potential.
Driven by technology, toolkits and talent
By Claudine Modlin and Graham Wright
Advanced analytics is helping some insurers offer innovative products and solutions. What do insurers need to know about the changing nature of analytics and whether it is worth the investment? Claudine Modlin and Graham Wright discuss technology, toolkits and talent — topics that may help you decide.
Risk transfer is part of a comprehensive solution
By Adeola Adele, Patrick Kulesa, Kevin Madigan and Alice Underwood
Given the dynamic nature of cyber-risk, taking a multidimensional approach that integrates board governance, technology solutions, behavioral change and risk transfer solutions can help reduce risk to a manageable level.