Nearly two-thirds (66%) of organisations worldwide plan to increase their cybersecurity investments in the coming year amid today’s evolving threat landscape, according to new research by Marsh, an insurance broker, risk advisor, and business of Marsh McLennan.
The findings show that almost 75% of organisations globally express high confidence in their overall cyber risk management strategies. Confidence varies by region, with organisations in India, the Middle East and Africa expressing the highest confidence at 83%, while organisations in Asia are the least confident at 50%.
The report revealed that organisations are planning to invest even more in cybersecurity defences in 2026, with more than a quarter (26%) planning to increase their budgets by 25% or more.
Top investment priorities include cybersecurity technology and mitigation, incident planning and preparation, and talent acquisition. UK organisations lead in planned cybersecurity spending increases, with 74% intending to increase their spending over the next 12 months.
“Today’s evolving threat landscape demands not only increased investment but a strategic, holistic approach to cybersecurity,” said Thomas Reagan, Global Cyber Practice Leader, Marsh. “Our survey clearly shows that while many organisations are boosting budgets, true resilience comes from balancing technology, talent, and preparedness—especially in managing third-party risks. This momentum is crucial as ransomware and privacy breaches remain top threats globally, reminding us that cyber defence is no longer optional but a business imperative.”
Marsh’s research also found that 70% of organisations experienced at least one material third-party cyber incident in the past year, underscoring the growing importance of managing third-party and supply chain cyber risks as an integral part of overall resilience strategies.
In addition, 29% of respondents ranked ransomware attacks and privacy breaches as their leading cyber concerns.
About the Author
