
Organisations are accelerating their digital transformation, investing in technologies such as artificial intelligence (AI), cloud platforms, and analytics. Yet, only 40 per cent are considering cyber security at the planning stage. This oversight is not without consequence: projects are delayed, risks are amplified, and the ability to compete in a digital-first world is compromised.
The International Data Corporation (IDC) survey sponsored by BDO, ‘Cybersecurity Readiness in the Age of Digital Transformation’, exposes the practical challenges faced by organisations. Average response times to a cyber incident now exceeds four days, with full recovery often taking more than a week. These delays erode stakeholder trust, disrupt operations, and impede innovation. GenAI brings additional risks, including phishing, data leakage, and governance blind spots, highlighting the urgent need for a cohesive approach to risk management.
Although nearly all organisations have some form of board or committee oversight, the continued rise in incidents and lengthy recovery periods indicate that governance alone is not enough.
Considered implementation and ongoing support is also required.
While having budget is essential, its true value comes from how effectively it is distributed and put into practice.
Without mature programs, optimised processes, and disciplined follow-through, increasing spending does not necessarily lead to better outcomes.
Persistent weaknesses remain in areas like third-party risk management, vulnerability remediation, and the integration of security into broader transformation initiatives.
These gaps persist even where funding and oversight are present, highlighting a disconnect between strategy and operational reality.
To be truly secure, confident and ready, organisations must embed cyber security early, supported by specialist teams, automation, and orchestration.
This survey was published by IDC and sponsored by BDO.
Subscribe to receive the latest insights.