Russian companies are increasingly prioritizing cyber resilience over traditional prevention-focused security strategies, according to a 2025 study by Jet Infosystems1. The research, which surveyed over 70 firms, reveals a significant shift toward rapid recovery and adaptive security measures, driven by rising ransomware and supply chain threats. This trend aligns with global movements but reflects unique regional challenges, including talent shortages and regulatory changes.
Key Findings: Resilience Over Prevention
The study highlights that 57% of surveyed organizations now adopt 1–3-year cybersecurity strategies, a sharp contrast to the 15% using 5-year plans in 20242. Alexander Morkovchin, Head of Analytics at Jet Infosystems, notes:
“Resilience is critical against ransomware, supply chain attacks, and APTs. Recovery speed matters as much as prevention.”
This shift is evident in the 30% increase in demand for Disaster Recovery (DR) and Business Continuity (BC) tests, with ransomware simulations being the most frequent3.
Security Practices and Market Growth
IT failures (58%) and cyberattacks (17%) emerged as top concerns, yet only 8% of firms quantify risks financially. The finance and retail sectors lead in financial risk assessment. Meanwhile, the cybersecurity market shows explosive growth in specific areas:
| Sector | Growth (2024) |
|---|---|
| Vulnerability Management | +304% |
| Anti-Fraud Solutions | +172% |
| Network Security | +153% |
Jet Infosystems reported 20.5B RUB in cybersecurity revenue (+43% YoY), completing 970 projects4.
Talent Shortages and Future Trends
Open InfoSec roles grew 30% year-over-year, with 61% of companies reporting vacancies in 2024. To address gaps, 52% of CISOs now consider hiring students. Future projections indicate 50% growth in Access Management due to new GOST R 71753-2024 standards, while anti-fraud solutions will expand with digital ruble adoption5.
Relevance and Recommendations
For security teams, the study underscores the need to:
- Prioritize DR/BC testing, especially for ransomware scenarios.
- Invest in rapid recovery tools and failover systems.
- Develop training pipelines to address talent shortages.
The findings align with earlier 2024 reports from RBC and IXBT, reinforcing the urgency of adaptive strategies6.
Conclusion
Russian businesses are redefining cybersecurity priorities, emphasizing resilience and agility. As threats evolve, organizations must balance prevention with recovery capabilities, leveraging regulatory changes and market innovations to stay ahead.
References
- “Российский бизнес делает ставку на киберустойчивость — исследование «Инфосистемы Джет»,” CNews, 2025. [Online]. Available: https://safe.cnews.ru/news/line/2025-04-24_rossijskij_biznes_delaet.
- “Jet Infosystems’ 2025 Cybersecurity Study,” Habr, 2025. [Online]. Available: https://habr.com/ru/articles/904040/.
- “Russian Businesses and Cyber Resilience,” CISOCLUB, 2025. [Online]. Available: https://cisoclub.ru/rossijskij-biznes-delaet-stavku-na-kiberustojchivost-issledovanie-infosistemy-dzhet/.
- “Market Growth in Cybersecurity,” Anti-Malware.ru, 2025. [Online]. Available: https://www.anti-malware.ru/news/2025-04-24-111332/45894.
- “Talent Trends in InfoSec,” RBC, 2024. [Online]. Available: https://companies.rbc.ru/news/kb2WvBGVAq/.
- “Jet Infosystems’ 2024 Preliminary Findings,” IXBT, 2025. [Online]. Available: https://ixbt.pro/news/2025/03/05/infosistemy-dzet-rezultaty-issledovaniia-rossiiskogo-rynka-informacionnoi-bezopasnosti.html.
