Indonesia prioritises cyber readiness, says PwC’s Digital Trust Insights 2026

• Cyber risk investment is rising to the top, as nearly 68% of business and tech leaders in Indonesia place it among their top three strategic priorities.

• Geopolitical shifts are reshaping cyber strategies, with nearly half of Indonesian organisations adjusting trade policies and cyber insurance to strengthen resilience.

• Indonesia outpaces Asia Pacific and global peers, with 34% of its organisations investing more in proactive cybersecurity strategies, compared to 22% and 24% respectively.

• Businesses across Asia Pacific (55%) and globally (53%) are responding by making AI and machine learning tools their top priority for addressing talent gaps.

• Deepfake-enabled social engineering is another emerging threat, cited by 53% in Asia Pacific and 48% worldwide.

Jakarta, 9 December 2025 – Cybersecurity is entering uncharted territory. A rapidly evolving global landscape and threat environment, driven by swift technological advancements, are putting cyber strategies to the test, according to PwC’s 2026 Global Digital Trust Insights survey.

The survey, which interviewed 3,887 business and technology executives across 72 countries and territories, including Indonesia, reveals that organisations in Indonesia are not only accelerating their cybersecurity investments but also reporting stronger business growth and higher confidence in the digital future compared to Asia Pacific and global peers.

Sean Joyce, PwC US Global Cybersecurity and Privacy Leader, said, “New and emerging technologies and a rapidly evolving and digitally interconnected global ecosystem and threat landscape have created a tipping point. Cyber leaders must chart a path forward and that requires executive alignment. The most successful organisations are those where CISOs have a seat at the table and cyber is woven into business decisions. The organisations that will lead in the future are those investing in cyber not just to respond, but to anticipate. This year’s findings show that resilience comes from foresight, not hindsight. Organisations should ensure they are also investing in AI and cyber skills, prioritising the upskilling and re-skilling of their cyber teams in order to clearly and proactively map the cyber risks they face.”

The report reveals that nearly 68% of business and technology leaders in Indonesia rank cyber risk investment among their top three strategies for the coming year, higher than Asia Pacific (62%) and global (61%). Beyond technology, Indonesian organisations are reinforcing resilience in response to geopolitical uncertainty: 47% are prioritising changes in trade and operating policies, and 45% are adjusting cyber insurance policies, outpacing Asia Pacific (39% and 41%) and global (40% and 39%). These shifts underscore how disruption has elevated cybersecurity from a technical concern to a critical lever for business resilience.

Indonesia also leads Asia Pacific and global peers in proactive cybersecurity measures. The survey shows that 34% of Indonesia-based organisations are spending significantly more on proactive strategies, compared to Asia Pacific (22%) and global (24%). These proactive measures include continuous monitoring, risk assessments, penetration testing, strengthening controls, employee training, and robust governance frameworks, all aimed at anticipating threats rather than merely reacting to them.

AI and talent gaps shape cybersecurity priorities

Cybersecurity workforce shortages continue to hinder progress as organisations seek to harness AI, secure increasingly complex environments and prepare for next-generation threats. Businesses across Asia Pacific (55%) and globally (53%) are responding by making AI and machine learning tools their top priority for addressing talent gaps. However, AI also introduces significant risks. The report highlights that AI-powered malware is a concern for 65% of organisations in Asia Pacific and 62% globally, while AI-driven supply chain attacks worry 64% and 56% respectively. Deepfake-enabled social engineering is another emerging threat, cited by 53% in Asia Pacific and 48% worldwide. Cloud-related threats remain a major concern, with 37% of Asia Pacific organisations and 33% globally admitting they are least prepared to handle them.

Following security priorities, businesses continue to invest in endpoint security, with 15% of organisations in both Asia Pacific and globally ranking it among their top investment areas. Endpoint security is regarded as a key component of modernisation strategies, particularly for mitigating ransomware, zero-day exploits and supply chain vulnerabilities. In addition, 20% of Asia Pacific organisations and 19% globally plan to leverage managed services for endpoint security.

Subianto, PwC Indonesia Chief Digital & Technology Officer, added, “AI is rapidly becoming a cornerstone of modern cybersecurity strategies, offering transformative capabilities while introducing new risks that leaders cannot ignore. Autonomous AI agents are evolving beyond analytical tools into proactive defenders, capable of initiating responses and collaborating with human teams. Yet, the same technology fuels emerging threats such as deepfake-enabled social engineering and AI-powered malware, which are cited as major concerns across regions. Alongside these developments, endpoint security remains critical for mitigating ransomware, zero-day exploits and supply chain vulnerabilities, forming part of a broader modernisation agenda. In an era of disruption, organisations are shifting from reactive measures to operational resilience, embedding governance, risk controls and readiness into their strategies to ensure cybersecurity becomes a fundamental driver of business continuity and trust.”