Gartner Forecasts Enterprise Security and Risk Management Spending in Australia to Grow 11.5% in 2024

Australian organisations will spend more than AU$7.3 billion on information security and risk management products and services in 2024, an increase of 11.5% from 2023, according to the latest forecast from Gartner, Inc. Spending on cloud security will see the largest growth with an increase of 26.9% expected in 2024.

Gartner analysts are exploring how security and risk management leaders can advance their information security and risk strategies this week at the Gartner Security & Risk Management Summit taking place in Sydney.

"Recent highly publicised cyberattacks in Australia, coupled with increasing regulatory obligations, are keeping security and risk top of mind for Australian organisations this year, not to mention securing what often feels like a tidal wave of new generative AI (GenAI)-enabled technologies," said Richard Addiscott, Senior Director Analyst at Gartner.

"As the frequency and negative impact of cybersecurity incidents continues to rise, every organisation is worried about a potential fallout, and industry regulators are increasingly pushing for improved competence."

In Gartner's annual global survey of over 2,400 CIOs and technology executives, including 87 from Australia and New Zealand (ANZ), 87% of ANZ respondents revealed that cybersecurity will receive their largest increase in technology investment in 2024, up from 62% in 2023.

Security Services Remains Largest Spending Segment

Security services, including consulting, hardware support implementation and outsourcing services, remains the largest end user spending category in Australia, forecast to reach almost AU$4.3 billion in 2024. This is an increase of 9.6% from 2023, reflecting the increasingly important role security service providers play in helping organisations in Australia navigate emerging cybersecurity challenges (see Table 1).

Increasing Investment in Generative AI

According to Gartner, security and risk leaders in Australia need to prepare for the swift and continual evolution of GenAI, as large language model (LLM) applications like ChatGPT and Gemini are only the start of its disruption. GenAI introduces new attack surfaces that need protecting and require changes to application and data security practices and user monitoring.

By 2025, Gartner predicts GenAI will cause a spike in the cybersecurity resources required to secure it, causing more than a 15% incremental spend on application and data security.

"The use of GenAI models unlocks many benefits, but users must also contend with new unique risks, requiring new security practices focused on data protection, AI application security and content anomaly detection," said Addiscott. "These new attack surfaces will drive security departments to spend time and money implementing GenAI security and risk management controls."

According to Gartner, spending on GenAI will primarily be incorporated into enterprises through existing IT spending in the long-term, through software, hardware and services they are already using.

"It's reasonable to suggest we'll see similar patterns when it comes to security spending as the security capabilities continue to evolve," added Addiscott.

Gartner clients can read more in the report "Forecast: Information Security and Risk Management, Worldwide, 2021-2027, 4Q23 Update."

Gartner Security & Risk Management Summit 

Gartner analysts are presenting the latest research and advice for security and risk management leaders at the Gartner Security & Risk Management Summit in Sydney this week. Upcoming dates and locations for Gartner Security & Risk Management Summits are June 3-5 in National Harbor, July 24-26 in Tokyo and September 23-25 in London. Follow news and updates from the conferences on X using #GartnerSEC.

About Gartner for Cybersecurity Leaders

Gartner for Cybersecurity Leaders equips security leaders with the tools to help reframe roles, align security strategy to business objectives and build programs to balance protection with the needs of the organisation. Additional information is available at https://www.gartner.com/en/cybersecurity.

Follow news and updates from Gartner for Cybersecurity Leaders on X and LinkedIn using #GartnerSEC. Visit the Gartner Newsroom for more information and insights.

About Gartner

Gartner, Inc. (NYSE: IT) delivers actionable, objective insight that drives smarter decisions and stronger performance on an organisation's mission-critical priorities. To learn more, visit gartner.com.