Between illusion and reality

At the same time, cybersecurity is seen as a value-creation factor and is becoming more of a focus in the development of new products, services and business models, as well as digitization in general. In the view of many CIOs and CISOs, the trend toward cloud use should raise the level of IT security, but also requires a restructuring of the security architecture and greater investment. Budgets for prevention, attack detection and recovery measures will therefore increase in some cases in the coming years. As the most frequent consequence of a cyber attack that has taken place, 87 percent of the study participants expect high image and reputation damage. 75 percent also fear an outflow of customer data, 73 percent an outflow of critical company data.

The risk of ransomware is rated as high by 58 percent of companies. Despite this high threat level, 47 percent of CIOs and CISOs fully agree with the statement that they are able to keep pace with technical developments around cybersecurity and methods used by hackers. In contrast, however, only 67 percent measure IT security resilience based on KPIs; however, another 24 percent are planning to introduce corresponding processes. These are the findings of the new Lünendonk Study 2022 "From cybersecurity to cyberresilience - more digitalization, more cyberthreat?", which was prepared in collaboration with KPMG.