According to a survey of managers (C-Level): Over 60 percent of DACH managers in the manufacturing sector expect a cyber attack - but it is not a matter for the boss. Image damage plays a subordinate role.
As part of a survey of managers (C-level) in Germany, Austria and Switzerland on the subject of cyber security, which was carried out by the market research institute Ipsos on behalf of Sophos, Sophos also examined the manufacturing industry. In this sector, the majority of management expects a cyber attack in the future, so they have recognized the potential dangers: 63 percent of German and 61 percent of Austrian managers consider a cyber attack on their company to be likely or very likely. In Switzerland, at 68 percent, executives are even more concerned than their neighbors.
Concerned about the effects - fines don't matter
When asked about the economic impact, DACH managers fear disruptions in commercial processes in particular. This was said by 62 percent of the German, 50 percent of the Austrian and even 74 percent of the Swiss managers. They also fear production delays or a production stop: this is stated by 49 percent of managers in Germany, 33 percent in Austria and 58 percent of Swiss managers.
The softer factors include the negative impact on image and brand through a cyber attack. In DACH, this risk is rated somewhat lower than the disruption of internal processes. 42 percent of bosses in Switzerland and only 25 percent of German and 28 percent of Austrian bosses think that a cyber attack could damage the image and the brand.
Fears of penalties due to a cyber attack are surprisingly low. Only 10 percent of Swiss executives are worried about fines due to data protection violations as an economic impact of a cyber attack, Germany and Austria are even more relaxed about fines as a consequence of a cyber attack: Germany is 4 percent and for Austria this factor plays no role at all.
Cyber security is becoming increasingly important
Overall, the perception and importance of cyber security has changed for many senior employees in the DACH manufacturing companies in the last two to three years. At 33 percent, around a third of managers in Germany and 39 percent of Austrian managers state that cyber security has become even more important to them. In Switzerland, even more than half (53 percent) think so.
Increased investment in cyber security
Investments in cyber protection and IT security have increased overall, including in manufacturing. Switzerland is the leader: 53 percent of Swiss managers increased investments in cyber protection, followed by Austrian companies with 39 percent and German companies with 33 percent. According to the managers in the manufacturing sector, cyber security measures are to be further strengthened in the future, with executives in the DACH region particularly wanting to invest in additional IT security solutions such as AI. However, there are differences when comparing countries: In Germany, 35,4 percent of bosses and in Switzerland almost 37 percent plan to spend more money on this; in Austria this is only 27,5 percent.
The challenge of a shortage of skilled workers
The expansion of IT security specialists in these companies also shows that the topic of cyber security has increasingly become the focus of DACH managers in the manufacturing sector. In the past two to three years, 56 percent of managers in Germany (Austria 66 percent; Switzerland 68 percent) have recruited more IT security specialists. 22 percent of German executives also plan to hire more specialists in the future (Austria: 17 percent; Switzerland: 15 percent). However, this measure to ensure and implement cyber security also poses a major challenge, because as in all industries, there is a major shortage of skilled workers. 65 percent of German, 78 percent of Austrian and 58 percent of Swiss managers are aware that there is a shortage of qualified specialists.
IT security is not (yet) a top priority
There are large differences in the DACH countries with regard to the actors responsible for cybersecurity in the manufacturing sector. While the IT department is responsible for cyber security in 39 percent of Austrian companies, this is 48 percent in Germany and 47 percent in Switzerland. However, only 9 percent of German, 11 percent of Austrian and 26 percent of Swiss companies have a dedicated cyber security instance in their company.
A third of Austrian managers (33 percent) and 29 percent of German managers trust external service providers; in Switzerland this is only 15 percent. IT security is a top priority in only a few companies in the manufacturing sector: The issue is only dealt with directly at the managing director or board level in 14 percent of German, 11 percent of Austrian and 11 percent of Swiss companies.
Managers in manufacturing feel well positioned
Overall, the manufacturing industry in DACH sees itself well prepared against cyber threats: 62 percent of managers in Germany and 61 percent in Austria think they are well to very well prepared against cyber threats. Switzerland sees itself as particularly well prepared: with the highest industry value of 79 percent, executives of Swiss companies from the manufacturing sector consider themselves to be well to very well positioned against cyber threats.
background of the survey
On behalf of Sophos, Ipsos surveyed 2022 C-level managers from trade, services and manufacturing in Germany and 201 each in Austria and Switzerland on the subject of IT security in their companies in the summer of 50.
More at Sophos.com
About Sophos More than 100 million users in 150 countries trust Sophos. We offer the best protection against complex IT threats and data loss. Our comprehensive security solutions are easy to deploy, use and manage. They offer the lowest total cost of ownership in the industry. Sophos offers award-winning encryption solutions, security solutions for endpoints, networks, mobile devices, email and the web. In addition, there is support from SophosLabs, our worldwide network of our own analysis centers. The Sophos headquarters are in Boston, USA and Oxford, UK.