AI initiatives driving increased focus on cybersecurity
New global cybersecurity research by Rackspace Technology, conducted in association with Microsoft, finds that artificial intelligence (AI) is playing an increasingly critical role in driving organisations' security postures and their need for investment in cybersecurity.
When asked how AI is influencing their organisations security posture, 72% of survey respondents in the Asia-Pacific Japan (APJ) region said that AI has increased their need for cybersecurity, resulting in stricter security measures on data storage and access (62%), greater attention to the exposure of sensitive data (53%) and stronger classification frameworks and guidelines (52%).
At the same time, survey respondents say that AI-enabled technologies have become a critical tool in the security arsenal across a number of cyber investment areas, including app security (87%), cloud-native security (88%), and data security (82%). 89% also say their organisations have a formal policy in place on AI governance and security in place, though only 37% say that the level of awareness and understanding among employees of their policy is great, vs. 49% who characterise it as fair.
"As AI has emerged as an increasingly important area of focus for organisations of all sizes, it presents both challenges and opportunities for security teams," says Jeff DeVerter, Chief Technology Evangelist, Rackspace Technology.
"We are seeing an increased focus on AI data governance and a heightened focus on cloud-native security as organisations infrastructures become more distributed and the IT perimeter becomes blurred," he says.
"But we are also seeing more companies leveraging AI to fight attackers and stay ahead of the curve while prioritising training of personnel to help them better understand and avoid vulnerabilities."
Cyber budgets rise, with cloud architecture attacks a leading concern
The research found 66% of survey respondents say they have increased their cyber budget over the past year, while only 3% said they have made cuts.
Meanwhile, 31% of those who have increased say they have raised their cybersecurity budget by 16% or more. Some 30% of surveyed organisations say they dedicate more than 16% of their total IT budget to cyber. The biggest areas of investment are cloud-native security (59%), application security (52%) and data security (50%), which saw an 8% increase over Rackspace's 2022 survey.
One major factor driving the increase is the rise in concern over cloud architecture attacks, which rose 12% compared to 2022 and which 62% of respondents identify as their biggest threat. It is also the area organisations feel the least prepared to address themselves, with 58% relying on a partner to deliver cloud-native security.
Continuing talent crunch leads to more partnering
Securing and retaining cybersecurity talent remains a major organisational hurdle, with survey respondents identifying a shortage of skilled workers as their leading cyber challenge.
In an ultra-competitive hiring environment with high employee turnover, rather than bringing on additional internal resources, companies are more reliant than ever on outside partners. Some 49% of respondents cite engaging with cybersecurity services partners for consultation or support as a top three priority, with a lack of internal expertise being the leading cause.
"As cybersecurity has become increasingly complex, with workloads and data deployed across multiple platforms, it has become much more difficult to maintain a go it alone mentality," says D K Sinha, President, Public Cloud for Rackspace Technology.
"Fortunately, there is a plethora of great cloud security tools available to organisations and partner networks that can help fill in knowledge gaps," he says.
Stronger C-suite and board engagement
Engagement of C-suites and boards with the array of cyber threats they are facing is having a positive impact on visibility, buy-in, and collaboration. According to the survey, cybersecurity remains the top concern for the C-suite (65%) above issues such as digital transformation (56%), sustainability (52%), interest rates (47%), retaining/hiring employees (42%), and supply chain/logistics management (37%) and up from 58% in Rackspace's 2022 survey.
Furthermore, 78% of respondents say the level of concern for cybersecurity has increased in their C-suite over the past 12 months, while 75% say the C-suite is making more of an investment in cybersecurity. Some 78% also say that better collaboration between the security team and the C-suite has effectively reduced the cyber skills gap. Meanwhile, 65% of respondents say cybersecurity is a top two concern for their board of directors.