Globally, Asian organisations are least confident about their overall cyber risk strategies according to a new global survey conducted by global insurance broking firm Marsh.
The survey polled 2,200 cyber risk leaders across 20 countries and eight global regions. The survey revealed that in a global cyber environment marked by major security lapses, cyber attacks and technology outages, organisations around the world are more confident in how they approach cyber risk management and are planning to invest even more in cyber security defences in 2026.
Marsh said that nearly 75% of organisations surveyed globally express high confidence in their overall cyber risk management strategies. But confidence varies by regions, with organisations in India, the Middle East and Africa expressing the most confidence at 83%, while organisations in Asia are the least confident at 50%.
Nearly two-thirds (66%) of organisations worldwide plan to increase their cyber security investments in 2026. More than a quarter (26%) are planning to increase their budgets by 25% or more. Top investment priorities include cyber security technology and mitigation, incident planning and preparation, and talent acquisition.
Marsh global cyber practice leader Thomas Reagan said, “Today’s evolving threat landscape demands not only increased investment but a strategic, holistic approach to cyber security.”
He said, “Our survey clearly shows that while many organisations are boosting budgets, true resilience comes from balancing technology, talent and preparedness, especially in managing third-party risks. This momentum is crucial as ransomware and privacy breaches remain top threats globally, reminding us that cyber defences is no longer optional but a business imperative.”
At least 70% of organisations experienced at least one material third-party cyber incident in the past year, underscoring the critical and growing importance of managing third-party and supply chain cyber risks as an integral part of overall cyber resilience strategies. Some 29% of global respondents ranked ransomware attacks and privacy breaches as their leading cyber concerns.