Why are informed cybersecurity decisions crucial for Middle East businesses?
By Puja Sharma
A global survey of cybersecurity decision-makers finds that the majority of Middle East respondents (91%) are satisfied with the quality of their threat intelligence, but most struggle with effectively applying it
Although the majority of Middle East respondents are satisfied with the quality of their threat intelligence, Mandiant unveiled the findings of its “Global Perspectives on Threat Intelligence” report, which provides new insight into how organizations navigate the increasingly complex threat landscape. The report is based on a global survey of 1,350 cyber security decision-makers across 13 countries and 18 sectors – including respondents from the Middle East.
Operationalizing intelligence was identified as a challenge
Despite the widespread belief among Middle East respondents that understanding the cyber threat actors who could be targeting an organization is important (94%), 83% stated that their organizations make most or all of their cyber security decisions without insights into the threat actor that is targeting them.
While the report found that a majority of respondents (91%) in the region were satisfied with the quality of threat intelligence their organization is using, respondents declared that effectively applying that intelligence throughout the security organization is one of their greatest challenges (49%).
Underestimating the threat
According to the report, just over two-thirds (68%) of security decision-makers believe senior leadership teams still underestimate the cyber threat posed to their organizations, with respondents from the Middle East most likely to lack faith in their senior leadership’s knowledge of the cyber threat (68%).
Despite these concerns, however, security decision-makers remain optimistic regarding the effectiveness of their cyber defenses. When asked about confidence in whether their organization is fully prepared to defend itself against different cyber security events, respondents felt most confident in tackling financially motivated threats, such as ransomware, with the majority (96%) at least somewhat confident in defending against this, followed by those conducted by a hacktivist actor (95%) and nation-state actor (91%).
Further, just over half of respondents (57%) felt they could prove to their senior leadership team to a great extent that their organization has a highly effective cybersecurity program.
Sandra Joyce, Vice President, of Mandiant Intelligence at Google Cloud said, “A conventional, check-the-box mindset isn’t enough to defend against today’s well-resourced and dynamic adversaries. Security teams are outwardly confident, but often struggle to keep pace with the rapidly changing threat landscape. They crave actionable information that can be applied throughout their organization.”
Joyce continued, “As our ‘Global Perspectives on Threat Intelligence’ report demonstrates, security teams are concerned that senior leaders don’t fully grasp the nature of the threat. This means that critical cyber security decisions are being made without insights into the adversary and their tactics.”
Key findings:
- When asked which countries their organization would be unable to fully defend itself against, almost half of the respondents (49%) placed North Korea in their top three, followed by Russia (48%), China (43%), and Iran (43%).
- Around 44% of respondents reported that their organization had suffered a significant cyber-attack in the past 12 months, defined as one that had caused demonstrable harm.
- Cybersecurity is only discussed on average once every three to five weeks with various departments within organizations, including the board of executives (three), members of the C-suite (four), and other senior stakeholders (five).
- Only 43% of security teams share threat intelligence with a wider group of employees for risk awareness.
- 64% of IT security employees feel overwhelmed by the amount of data and alerts they have to deal with regularly.
- Security teams believe possessing greater knowledge of cyber threat actors will allow them to:
- Shift from a reactive to a proactive cyber security stance (61%)
- Take action to better protect the organization (57%)
- Better prepare for future attacks (57%)
IBSi FinTech Journal

- Most trusted FinTech journal since 1991
- Digital monthly issue
- 60+ pages of research, analysis, interviews, opinions, and rankings
- Global coverage
Other Related News
Related Reports

Sales League Table Report 2024
Know More
Global Digital Banking Vendor & Landscape Report Q4 2024
Know More
NextGen WealthTech: The Trends To Shape The Future Q4 2023
Know More
IBSi Spectrum Report: Supply Chain Finance Platforms Q4 2023
Know More