Sign in
Quick links
Discover — Customer Stories, Ebooks, Video & Resources Our communities Our sustainability journey Technology lifecycle services Datacom’s fifth annual cloud report

State of Cybersecurity Index 2025

Datacom research report: Australia
Get your copy of the Index
Download the report

Download the State of Cybersecurity Index 2025

Datacom’s State of Cybersecurity Index provides valuable research insights into the cybersecurity market in Australia. The research findings draw on a specially commissioned TRA (Tech Research Asia) survey of 400 IT security leaders and employees across the region to identify cybersecurity trends and attitudes. 

Insights include:

  • The biggest concern for security leaders
  • The discrepancy between leaders and employees when it comes to being adequately informed about cyber threats
  • Which team is considered responsible for cybersecurity in organisations, and the impact on its people

Thank you

Thank you for downloading Datacom’s State of Cybersecurity Index 2025. You will receive an email with your copy shortly. 

Exploring cybersecurity attitudes across Australia.

Cybersecurity is not a new challenge for organisations, but the rapid rise of AI has introduced a complex dimension to network and internet safety. 

Datacom commissioned TRA (Tech Research Asia) to undertake wide-ranging research into Australia’s cybersecurity market. The research draws on a survey of 400 IT security leaders and employees across Australia to identify cybersecurity trends and attitudes. 

It found that the use of AI in the hands of hackers and scammers is top of mind for IT and security leaders, while employees are focused on their own usage of AI tools and its potential impact. Both see inherent rewards and risk. And while tech leaders rate cybersecurity tech and practices as mature and staff levels of cyber awareness as being AI-ready, employees are not as confident.

Most staff still see their organisation’s cybersecurity as the sole responsibility of the IT team. A combination of this mindset and the AI-enabled jump in the sophistication of scams and attacks is putting high levels of pressure on IT staff and tech leaders are increasingly concerned about cyber burnout.  

Accurately forecasting future cybersecurity threats is not possible, but identifying today’s top challenges and pinpointing gaps in understanding provides a foundation for more informed decision-making by IT and cybersecurity leaders, and their organisations.

Top three cybersecurity threats

Security leaders in Australia identified AI as a key contributor to cybersecurity threats, but increasingly advanced phishing and social engineering scams are also a major concern.

6

0

1

2

3

4

5

6

7

8

9

6

6

0

1

2

3

4

5

6

7

8

9

6

%

AI based cyber-attacks

4

0

1

2

3

4

5

6

7

8

9

4

8

0

1

2

3

4

5

6

7

8

9

8

%

Phishing/social engineering scams

4

0

1

2

3

4

5

6

7

8

9

4

4

0

1

2

3

4

5

6

7

8

9

4

%

DDos attacks

AI disconnect: are our teams feeling ready?

Senior security leaders overestimating employees' cybersecurity readiness

Business leaders are looking to AI to deliver increased efficiency, productivity and insight. But they may be overestimating how prepared their teams are feeling to manage the cybersecurity risks that come with AI. 

 
Pinch and drag on the image above to interact %
Statistics for Australia depicting how security leaders and employees feel about their organisation's cybersecurity readiness.
The disconnect between the perception of AI and cybersecurity readiness among our security leaders and that of employees poses significant risk. We’ve got work to do within our organisations to get everyone on the same page.
Profile photo of Collin Penman
Collin Penman
Chief Information Security Officer, Datacom

Cybersecurity still seen as “IT’s job”

Cyber burnout concerns growing, cybersecurity identified as IT’s remit

Despite well-worn advice and the prevalence of training modules outlining the role of all staff in minimising cybersecurity risks and preventing breaches, responsibility for cybersecurity is still mostly seen as the remit of IT teams and senior leaders.

 
Pinch and drag on the image above to interact %
A line graph showing which team is believed to be responsible for cybersecurity within organisations across Australia.

Cybersecurity professionals are feeling the strain of that responsibility too.

58% of Australian security leaders say they believe there is cyber burnout within their security or IT teams with employees stressed or constantly under pressure. 

 
Pinch and drag on the image above to interact %
Statistics for Australia depicting cyber burnout in teams.
Cybersecurity needs to be recognised as an organisation-wide responsibility. Having a business continuity of resiliency plan in place dictates how quickly an organisation can assess the damage, protect against ongoing risks and stand-up its operations.
Profile photo of Laura Malcolm
Laura Malcolm
Managing Director, Datacom Australia

The aftermath: recovering after a cyber incident

Majority of organisations lack a business continuity or resiliency plan for cyber incidents

Security leaders are confident their cybersecurity practices are in keeping with intended business outcomes – with 95% describing cybersecurity practices as “well” or “very well” aligned to business outcomes. But some organisations may find they are underprepared in the wake of a cyber-attack or cybersecurity incident.

 
Pinch and drag on the image above to interact %
Statistics showing how security leaders in Australia feel about their preparedness in the event of a cyber-attack.

Methodology

Datacom commissioned TRA (Tech Research Asia) to undertake research into the cybersecurity market in Australia. The research included a wide-ranging and quantitative market survey, completed in November 2024, of 105 security leaders and 303 employees across all parts of the business.

The cover for State of Cybersecurity Index 2025

Brought to you in partnership with:

Microsoft logo
Learn more

Discover more