How businesses of all sizes can overcome their cybersecurity challenges

Bethwel Opil, Enterprise Client Lead, Kaspersky Africa

Kaspersky’s IT Security Economics Report 2024 reveals significant differences in how businesses allocate resources to cybersecurity. As expected, larger enterprises benefit from economies of scale, with more IT and security staff.

For their part, Small and Medium-Sized Businesses (SMBs) face disproportionately higher security costs relative to their size. These challenges require tailored cybersecurity strategies to ensure companies are protected, regardless of their size.

Cyber threats continue to evolve at an unprecedented rate, making resource allocation a critical component of an effective cybersecurity strategy. From ransomware targeting vital business systems to AI-driven phishing campaigns, businesses must adjust their security measures accordingly.

Large enterprises and SMBs face a variety of challenges, but both require well-structured investments in cybersecurity solutions to maintain a strong defence. And the need for dedicated security personnel has never been more important given how cyberattacks are becoming more advanced.

Large enterprises to manage complexity and security at scale

The Kaspersky report highlights that globally large enterprises manage an average of 15 security solutions, with 23 IT security specialists overseeing operations. Despite these resources, they struggle with complexity overload, as multiple solutions create fragmented security operations, making threat detection difficult. Siloed telemetry contributes to security gaps and inefficiencies.

This prevents data from being effectively correlated to understand the threat landscape. The cybersecurity talent shortage exacerbates the issue, as high demand for skilled professionals results in increased costs and hiring difficulties. Cybersecurity teams are also overwhelmed by an excessive number of alerts and false positives, making effective threat detection more challenging.

To mitigate these challenges, large businesses should consolidate their security tools using Extended Detection and Response (XDR). This integrates data sources to streamline threat detection and response. By centralising security operations, companies can significantly enhance their ability to detect and neutralise threats before they escalate into costly breaches.

Another key component of enterprise cybersecurity is the adoption of Zero Trust security models. This approach ensures that no user or device is automatically trusted. Instead, it requires verification across all network activity. Implementing Zero Trust frameworks can help businesses eliminate internal blind spots, reducing the risk of insider threats and lateral movement by attackers.

The increasing use of cloud infrastructure further complicates security efforts. Large organisations managing hybrid environments must ensure they have cloud-native security solutions that integrate with their existing cybersecurity frameworks. Kaspersky’s cloud security offerings provide extended visibility and control over multi-cloud environments, preventing unauthorised access and data breaches in increasingly complex IT landscapes.

With more businesses transitioning to hybrid work models, securing endpoints has also become a priority. Employees accessing corporate systems remotely introduce new vulnerabilities that cybercriminals can exploit. Enterprises must implement strong endpoint protection and enforce strict access policies to minimise potential attack vectors. Multi-factor authentication (MFA) and identity verification solutions further strengthen security postures, reducing the risk of unauthorised access and data breaches.

Enterprises should also apply threat intelligence in their cybersecurity practices to be informed about the evolving attack trends. By leveraging real-time information, businesses can stay ahead of cybercriminals, anticipate emerging threats relevant to their geography, industry, and software profile, to adapt their security measures proactively. Threat intelligence also helps security teams prioritise alerts, ensuring that critical vulnerabilities are addressed before they can be exploited by attackers.

Regulatory compliance is another aspect of cybersecurity investment. Governments around the world are tightening regulations on data protection, and businesses must ensure they comply with local frameworks. Failure to comply can result in substantial fines and reputational damage, making regulatory alignment a key focus in cybersecurity planning.

There are also emerging threats such as AI-powered phishing and malware distribution schemes and deepfake attacks that pose new challenges for enterprises. Cyber attackers are now leveraging AI to automate their processes, making them more sophisticated and difficult to detect.

Businesses need to therefore integrate AI-driven security solutions to counter these evolving threats effectively. Solutions that use machine learning algorithms to identify anomalies and detect unusual user behaviours and software operations are essential for enterprise security strategies.

Another growing concern for large enterprises is supply chain attacks, where cybercriminals exploit vulnerabilities in third-party providers to infiltrate major networks. These attacks emphasise the need for thorough vendor risk assessments and continuous monitoring of external partnerships.

Larger organisations also face challenges in budgeting for cybersecurity investments. While they are able to allocate more funds than SMBs toward security solutions, many still struggle to measure return on investment (ROI).

A study referenced in Kaspersky’s IT Security Economics Report found that businesses with dedicated cybersecurity budgets reduced financial losses by nearly 50% following an attack. Proper planning and investment in security frameworks ensure businesses remain resilient against emerging threats.

The unique security challenges of SMBs

With limited IT employees and fewer security solutions, SMBs are highly vulnerable to cybersecurity threats. Phishing and social engineering attacks remain prevalent, as employees often lack training to identify and respond to them. Ransomware threats continue to rise, with many SMBs lacking the advanced defences required to prevent data breaches.

A lack of regular cybersecurity awareness training means employees often become the weakest link in the SMB’s security posture. Additionally, financial and resource constraints make it difficult for SMBs to invest in cutting-edge security tools, leaving them exposed to increasingly sophisticated cyber threats.

SMBs often operate under the misconception that they are too small to be targeted. In reality, attackers recognise that smaller businesses frequently lack comprehensive security measures, making them easy prey for ransomware, credential theft, and supply chain attacks. This underscores the need for SMBs to implement multi-layered security solutions that provide protection against evolving cyber threats.

One of the most effective ways for SMBs to strengthen their security posture is to embrace Managed Security Service Providers (MSSPs). By outsourcing cybersecurity operations, small businesses gain access to expert threat monitoring and response capabilities without incurring the high costs of an in-house security team.

Kaspersky Managed Detection and Response (MDR) ensures around-the-clock threat monitoring and real-time protection, helping SMBs strengthen their security posture without requiring extensive internal resources.

Industry-specific cybersecurity challenges also impact SMBs differently. Retail businesses, for instance, must focus on POS system security, while healthcare providers need to safeguard electronic medical records against cyber threats. Tailoring security strategies to industry-specific needs ensures more robust protection against sector-specific vulnerabilities.

The rise of bring-your-own-device (BYOD) policies in SMBs presents additional security risks, as employees use personal devices for work-related tasks. SMBs should implement mobile device management (MDM) solutions to enforce security policies across all devices accessing corporate networks.

SMBs must also adopt basic cybersecurity hygiene measures, such as ensuring all software and operating systems are regularly updated, important data is backed up, strong password policies are in place, and implementing network segmentation to limit exposure in case of a breach. These fundamental steps help create a more secure business environment and reduce the risk of widespread compromise.

As cyber threats become more sophisticated, SMBs need to remain proactive in addressing vulnerabilities and educating employees about emerging risks. Many small businesses falsely assume that cybersecurity investment is out of reach due to budget constraints, but affordable solutions like cloud-based security platforms now offer cost-effective protection for companies of all sizes.

Awareness, training, and leveraging modern security solutions such as Kaspersky Next, can help SMBs level the playing field and build resilience against cyberattacks.

The role of security awareness

Beyond technology, human error remains a leading cause of security breaches. Even the most advanced security systems cannot fully protect a business if employees lack the knowledge to identify and prevent cyber threats. Cybercriminals frequently exploit human vulnerabilities through phishing scams, social engineering attacks, and credential theft, making it essential for businesses to adopt a proactive approach to security training.

Cybersecurity awareness training is critical for both enterprises and SMBs to ensure employees can recognise and respond to potential threats. For example, Kaspersky’s Automated Security Awareness Platform provides interactive training and phishing simulations to help businesses improve their cybersecurity posture and equip employees with the necessary skills to mitigate cyber risks effectively.

A well-trained workforce acts as an additional security layer, reducing the likelihood of successful cyberattacks. Companies should implement ongoing security education programs, conduct simulated attack scenarios, and establish clear protocols for employees to follow in the event of a security breach. By fostering a culture of cybersecurity awareness, businesses can minimise human-related risks and strengthen their overall security posture.

By adopting a structured and proactive cybersecurity strategy, businesses can defend against evolving cyber threats while optimising their security investments. A resilient cybersecurity approach ensures long-term protection and minimises risk in an ever-changing digital landscape.