(ANSA) – ROME, NOVEMBER 24 – Despite the growing threat of cyberattacks, as demonstrated by what hit the European Parliament today, investments in information technologies dedicated to security in the European Union have not grown, but have fallen by 1% compared to 2021. This was revealed by a study by Enisa, the EU agency for cybersecurity, which analyzed the data collected by more than 1000 IT sector operators active in the 27 Member States of the Union. “The resilience of the EU’s infrastructure and critical technologies will depend to a large extent on the ability to make strategic investments”, explained the director of ENISA, Juhan Lepassaar, commenting on the results of the report. “I am confident – continued Lepassaar – that the EU has the necessary skills to achieve the objective of having the adequate resources available to further develop cyber security capabilities in all economic sectors”. “The 2016 EU directive on the security of network and information systems” and “online threats” – reads the note from the Agency – are “the main factors affecting the IT security budget”. Large companies invest an average of €120,000 on cybersecurity threat intelligence (CTI), compared to €5,500 for small and medium-sized businesses. On the other hand, companies with their own or internalized Security Operational Centers (SOCs) spend around 350,000 euros to protect themselves from cyber attacks, 72% more than the expenditure of operators with hybrid Socs. 37% of companies that operate essential services and digital service providers do not have a Soc. Enisa finally reports that “the healthcare and banking sectors bear the highest costs among the critical sectors with an average direct cost of 300,000 euros in the event of a cyber attack”. (HANDLE).