Aussie IT leaders unsure how to respond to data breaches

More than seven in ten (71%) Australian IT decision-makers are unsure what steps they need to take following a cyber incident or data breach, according to new research from KnowBe4.

A survey conducted by the security awareness training provider found that just 31% of Australian IT decision-makers understand the business impact of their business falling victim to a cyber attack. Even fewer (30%) are confident their employees can identify phishing and business email com promise emails.

KnowBe4 VP of Sales David Bochsler said the findings paint a disturbing picture. “It’s both surprising and hugely concerning that after the large-scale data breaches we’ve seen in recent years that the majority of Australian IT professionals are failing to understand the cyber risks their organisations face,” he said. “The lack of awareness Australian organisations still have from both IT decision-makers and their employees can be detrimental to both business operations and company reputation. With that in mind, it’s key for Australian organisations to prepare themselves for the steps they need to take following an incident.”

The survey also found that among respondents planning to spend more money towards cybersecurity in 2024, 46% report an intent to invest in new cybersecurity software solutions, with 40% planning to invest in a cybersecurity awareness training program with ongoing and relevant content.

Other planned areas for investment include employee policy changes related to cybersecurity (29%), cybersecurity insurance (29%) and simulated phishing and social engineering campaigns to help educate end users (21%).

Image credit: iStock.com/putilich