Data froma survey of334 cyber professionals and executives from seven countries in the region suggests a link …

Other findings

Third, 80% of respondents representing APAC (96% in Japan) indicated that cybersecurity leaders and CEOs should ultimately bear the responsibility for protecting against and responding to cyber incidents. APAC respondents also showed the following trends:

  • 90% indicated they possessed the right tools to “easily communicate the current security status to key stakeholders across teams” — higher than the global average of 81%. Specifically, 59% of respondents representing APAC indicated facing difficulties in conveying the importance of particular security measures to non-technical executives.
  • 61% agreed to prompts that their “non-security executives understand the company’s regulatory obligations”, alluding to possible communication barriers regarding the value of investments in cybersecurity that could impact their organization’s readiness and response capabilities.
  • 84% of respondents indicated noting an increase in their organization’s cybersecurity budget —higher than the global average of 76%. Furthermore, 84% expressed confidence in having the necessary resources — such as tools, personnel, expertise, and budget — to safeguard their organization from cyberattacks.
  • Respondents in the region indicated that, when submitting cybersecurity reports, they focused on critical data like breaches (75%), incidents (68%), and security risks (67%). Other related operational metrics such as time to detect (57%), time to respond (63%), and time to recover (47%) had less exposure.
  • In terms of communication strategies linked to cybersecurity information reporting, manual and time-intensive approaches were still in use, including static reports (84%), meetings (76%), and emails (67%).