• Share

Forty per cent of Australian senior executives report that the number of security incidents in their organisation has increased between 5% and 50% over the last 12 months, according to a survey released by EY.

Under cyber-attack, EY's Global Information Security Survey 2013 tracks the level of awareness and action by companies in response to cyber threats1.

The results show as companies continue to invest heavily to protect themselves against cyber-attacks, the number of security breaches is on the rise, with the question, not if, but when, a company will be the target of an attack.

EY Asia-Pacific Information Security Leader Mike Trovato said with information security functions not fully meeting the needs in 79% of Australian organisations, 88% of companies are maintaining or increasing their investment in cyber-security to combat the ever increasing threat from cyber-attacks.

“Cyber-crime is the greatest threat for organisations’ survival today, ”

Mike Trovato,
EY Asia-Pacific Information Security Leader

Using budgets to beat cyber-crime

“Budget allocations toward security innovation are inching their way up, enabling organisations to channel more resources toward innovating solutions that can protect them against the great unknown.

“However, many information security professionals continue to feel that their budgets are insufficient to address mounting cyber risks.

“Recent examples of the hacking of the Crimestoppers, Australian Federal Police and the Reserve Bank of Australia websites demonstrate that no organisation is safe and it is a problem that pays no heed to geographical borders.

“Many organisations have realised the extent and depth of the threat posed to them, resulting in information security now being ‘owned’ at the highest level within 70% of the organisations surveyed,” Mr Trovato said.

Despite half of the respondents planning to increase their budget by 5% or more in the next 12 months, 73% of Australian organisations cite an insufficient budget as their number one challenge to operating at the levels the business expects, compared with 65% globally.

Of the budgets planned for the next 12 months, 9% is ear-marked for security innovation and emerging technologies.

Return to top of page

How social media increases vulnerability to cyber threats

Mr Trovato said as technologies become further entrenched in an organisation’s network and culture, organisations need to be aware of how employees use devices and social media, both in the workplace and in their personal lives.

“This is especially true when it comes to social media, which respondents identified as an area where they continue to still feel unsure about their capability to address risks.

“If organisations are putting all their energy into addressing current technology issues, how will they protect themselves against technologies that are about to appear on the horizon? For example, how will they face the challenge of managing and defending against personal and hosted clouds?” Mr Trovato said the gap between the level of information security measures organisations have in place and what they actually need is widening.

Return to top of page

Technology innovation accelerates cyber risk

“Greater emphasis on improving employee awareness, increasing budgets and devoting more resources to developing innovative security solutions is needed. The pace of technology evolution will only accelerate – as will the cyber risks.

“Not considering risks until they arise gives attackers the advantage, jeopardising an organisation’s survival, and is a huge missed opportunity to adapt and shape the company’s success. Resilient companies are more likely to prosper,” Mr Trovato said.

“In the end, leadership and accountability is required to combat these threats, and senior leaders need to be aware that 80% of the solution is non-technical, it really is a case for good security governance.” Organisations must undertake more proactive thinking, with tone-from-the-top support.

Download the survey

Return to top of page

Mike Trovato
Asia-Pacific Area Information Security Leader
Tel: +61 3 9288 8287

1The survey canvasses the opinions of over 1,900 senior executives globally, including nearly 90 in Australia.