Have an account?

  •   Personalized content
  •   Your products and support

Need an account?

Create an account

Cybersecurity. Get the full picture in EMEAR.

Security professionals in Europe, Middle East, Africa and Russia have shared their insights about cyber threats, security challenges and opportunities in 2018.



There are two types of companies: those who have been hacked, and those who don’t yet know they have been hacked.

John Chambers, former CEO, Cisco

What is keeping IT security professionals up at night?

87% of companies in EMEAR admitted they have suffered a cyber attack in the past year.

The real number may be even higher: not all companies detect (or admit) they had breaches. Hackers are getting much better at disguising their attacks, so they can remain undetected for a longer period of time and extract more data.

For 27% of EMEAR organisations, the lack of security personnel is one of the biggest obstacles to security.

It is the second biggest concern in the UK, Spain and Russia, only behind budget constraints. Estimates show that there may be 3.5 million unfilled security jobs by 2021. It is important that companies consider their options to face this growing challenge, such as training their IT staff to take on security roles or automating processes to reduce overhead.

19% of EMEAR companies manage more than 21 vendors.

We observed a strong correlation between having a high number of vendors and how challenging it is for a company to manage security. IT security complexity is a big issue for security professionals, especially when considering the lack of budget and resources that they often face. Companies that invest in a security architecture and move away from a “best-of-breed” approach often experience less complexity.

Only 57% of security alerts in EMEAR are investigated. Of those, 32% are legitimate, but only 52% of legitimate alerts are remediated.

This means that only 9.5% of all alerts in EMEAR are remediated, which could pose a threat to a company’s security.

40% of EMEAR companies suffer from cyber fatigue (vs. 46% global)

These companies are so overwhelmed by security demands that they are struggling to remain proactive on threat detection. It is crucial that companies continue to invest in staying ahead of hackers and also prepare to detect and respond faster to any cyber attacks.

The impact of cyber attacks in EMEAR

48% of attacks in EMEAR resulted in damage over $500,000 (vs. 53% global).

This damage includes the costs of repairing systems as well as other financial losses, such loss of revenue and customers.

48% of organisations we interviewed in EMEAR have suffered public scrutiny due to a breach (vs. 55% global).

Public scrutiny may come from customers, partners, investors, shareholders, a board of executives, the media or any other stakeholder in the company. A public data breach could have a huge impact on a company’s reputation, if it is not well managed.

27% of breaches resulted in more than half of a company’s systems being impacted (vs. 32% global)

It can take a lot of time, resources and budget for a company to recover from a large-scale cyber attack. Companies should always assume the worst may happen and have a plan in place, which should cover not only data back up and incident response plans but also how to deal with the breach from a public relations and legal perspective.

59% of companies had to manage an outage of more than 5 hours in the past year due to a breach (vs. 58% global)

Longer outages will always be a headache for any organisation, but in industries that offer critical infrastructure services, such as utilities, healthcare or transportation, an outage may pose a risk to the safety and wellbeing of thousands of citizens.

Understanding the future of cyber security protection

Companies in EMEAR are relying heavily on new technology to reduce the effort needed to secure their organisations:
• 82% rely on automation
• 72% rely on machine learning
• 69% rely on artificial intelligence

Technology can be a great ally in reducing the burden of managing complex IT security infrastructures. However, it is only a part of the equation. A strong cyber security posture relies on a combination of advanced technology, clear processes and qualified people.

Hungry for more data?

Read the global study findings on the Cisco 2018 Annual Cybersecurity Report (pages 46 – 68).

About the Cisco 2018 Security Capabilities Benchmark Study

The Cisco 2018 Security Capabilities Benchmark Study offers insights on security practices currently in use, and compares these results with those of the 2017, 2016, and 2015 studies. The global research involved more than 3600 respondents across 26 countries and the findings are available on the Cisco 2018 Annual Cybersecurity Report.

This page displays an excerpt of the EMEAR data, which included the responses from security professionals in the following countries: Belgium, France, Germany, Italy, Netherlands, Poland, Russia, Saudi Arabia, South Africa, Spain, Sweden, Switzerland, Turkey, United Arab Emirates and United Kingdom. The data displayed here focuses on 3 areas of the study: security challenges, cyber attacks and adoption of new technology.