SecurityBrief Australia - Technology news for CISOs & cybersecurity decision-makers
Australia
Guides
#
cloud security
#
cybersecurity
#
endpoint protection
#
firewalls
#
ransomware
Search
Story image
#
Firewalls
#
Network Security
#
Advanced Persistent Threat Protection

Trend Micro study reveals cybersecurity gaps in Australia

Yesterday
Author image
By Shannon Williams, Journalist

Cyber security firmTrend Micro has published new research revealing significant gaps in cybersecurity among Australian organisations, highlighting issues such as inadequate staffing and insufficient board accountability.

The research indicates that only 37% of the organisations surveyed have the necessary staffing to provide round-the-clock cybersecurity coverage, a figure that suggests considerable vulnerabilities remain unaddressed. Furthermore, only 37% of the surveyed organisations utilise attack surface management techniques to gauge risk, and a mere 38% follow established frameworks like the NIST Cybersecurity Framework.

Srujan Talakokkula, Managing Director, ANZ Commercial at Trend Micro, commented on the findings, stating, 'This study reveals Australia has a lack of clear leadership on cybersecurity, which can have a paralysing effect on an organisation—leading to reactive, piecemeal and erratic decision making.

"One of the most concerning aspects is the lack of accountability from business leadership, and a lot of that comes down to collaboration and communication across the business," he said.

Talakokkula said companies need CISOs to clearly communicate in terms of business risk to engage their boards.

"Ideally, they should have a single source of truth across the attack surface from which to share updates with the board, continually monitor risk, and automatically remediate issues for enhanced cyber-resilience," he said.

The survey, which gathered insights from 100 Australian IT leaders, revealed that the major gaps in cyber-resilience are primarily due to insufficient staffing levels for comprehensive cybersecurity coverage, lack of attack surface management practices, and limited use of cyber frameworks. These represent critical areas where organisational improvements are required.

According to the research, significant issue identified is the perception of responsibility within organisations. A striking 37% of respondents claimed there is a disconnect at the leadership level, with cybersecurity not being deemed a crucial responsibility. Additionally, almost one-third of responses indicated that IT teams are viewed as chiefly responsible for mitigating business risk, demonstrating a widespread ambiguity in responsibility assignments.

The inconsistency in how organisations approach cyber risk is another concern, with 47% of global respondents indicating that their organisation's attitude towards cyber risk fluctuates regularly. This variable approach can lead to vulnerabilities being exploited, Trend Micro said.

Many organisations also expressed concerns about their ability to manage their attack surface effectively. Ninety-four percent of respondents are worried about their attack surface, while one-third are concerned about identifying and mitigating high-risk areas. Moreover, nearly a quarter of those surveyed lack a "single source of truth" to manage and monitor these risks.

Follow us on:
Follow us on LinkedIn Follow us on X
Share on:
Share on LinkedIn Share on X
Related stories
Sophos unveils new XGS desktop firewalls & software
Security practitioners embrace AI amidst tool distrust
Fortinet launches Lacework FortiCNAPP for cloud security
Exclusive: DataKrypto's CEO champions data privacy as a human right
Commvault launches cyber resilience platform on AWS
Top stories
NinjaOne launches AI tool & appoints data VP Carusone
AI raises cybersecurity concerns in Asia Pacific region
American Water breach highlights infrastructure vulnerabilities
Illegal streaming triples cybercrime risk for Australians
Kiteworks unveils tool to assess & prioritise data breaches