“THE ongoing prevalence of cyberthreats has forced organizations to address a variety of their cybersecurity measures,” Cameron Reid, director of Channel Sales MSP at Sophos Asia Pacific and Japan said in reference to the results of the report titled “Cybersecurity Playbook for Partners in Asia Pacific and Japan,” and highlights the growing demand for Managed Service Partners (MSPs) as organizations grapple with the rising threat of AI-augmented cyberattacks.
The Sophos report, in collaboration with Tech Research Asia, reveals a significant increase in cybersecurity budgets across organizations in the Asia Pacific and Japan (APJ) region. The report,
According to the report, 83 percent of organizations plan to increase their cybersecurity budgets in the next 12 months, with 50 percent specifically allocating more funds towards MSPs. This surge in investment reflects a heightened awareness of the evolving threat landscape and the need for specialized expertise to navigate it effectively.
He emphasizes that businesses are prioritizing the strengthening of their cybersecurity posture around financial operations, improving risk management capabilities, and ensuring robust cybersecurity measures to support digital transformation programs. “Evidently, when businesses invest in new technologies, it is front of mind that this is done in a secure manner to ensure potential attack surfaces are protected.”
The report identifies AI-augmented cyberattacks as a major concern for organizations across the region. Interestingly, Australia is the only exception, where credential theft and phishing/social engineering are considered bigger threats than automated attacks.
Another concerning finding is the lack of preparedness among organizations to deal with AI-related threats. Less than half (45 percent) of the surveyed organizations believe they possess the necessary skills to combat AI threats, and only 22 percent have a comprehensive AI and automation strategy in place. To address this skills gap, 45 percent of organizations are turning to partners for support, while 49 percent plan to invest in internal training and development programs with partner assistance.
The demand for MSP support is evident in the organizations’ investment priorities. Infrastructure and network security, threat detection and response, application security, identity access management, and incident response and recovery are the key areas where organizations are increasing their budgets.
The report also reveals a trend towards multi-vendor environments. Only 20 percent of the surveyed organizations rely on a single vendor for their cybersecurity needs, while 33 percent engage three or more vendors. This shift towards multi-vendor environments is expected to continue as organizations seek more flexible and tailored solutions from their partners.
As a result of all these threats, organizations are placing a high premium on the security posture of their partners. Nearly 60 percent of the surveyed organizations indicated their reluctance to engage partners who have experienced a security breach or incident. For those willing to engage with such partners, 81 percent plan to incorporate additional performance clauses and specific service level agreements to mitigate potential risks.
“Since adversarial behaviors are always evolving, it is essential that organizations get the support they need to address all aspects of cybersecurity and continue to consistently evaluate and maintain strong defenses against the latest cyberattacks,” adds Reid. He highlights the growing recognition among companies that they require external support to build ongoing cyber resilience and are looking to partners to bridge their internal skills gaps. “This means MSPs have an opportunity to win and maintain business by presenting their strong technical cybersecurity skills, knowledge of the threat landscape, and an ability to help customers and prospects stay secure so they can focus on their business operations and goals.”
