Cyber risk dominates
30% selected cyber risk – data breaches, criminal threats and widespread outages – as their top risk concern, up from 26% in 2025.
Cyber risk is now the number one threat concern of Singapore-based executives. What was once seen as an IT problem has become a serious business risk, with the potential to disrupt operations, damage reputation and spread across supply chains with lasting impact.
Our tracking of Singapore-based executives shows strong concern about cyber risk, but also high confidence in existing resilience measures. Many believe they would recover fully - financially and reputationally - after a cyber incident. In reality, this confidence is likely to be misplaced.
Cyber criminals are increasingly using AI driven tools to run fast, large-scale phishing and reconnaissance attacks. These automated systems exploit the connected nature of modern technology, making attacks quicker, smarter and far harder to detect or contain. As a result, cyber threats are escalating across economies, with less warning and greater consequences.
Resilience today must be built into everyday business planning, not treated as a one-off exercise. Organisations need clear, well tested business continuity plans that allow them to respond quickly and effectively to cyber incidents.
Planning should also consider the real cost of an attack. This includes understanding how much financial impact the business can absorb, what cyber insurance is in place, where cover may be limited, and where controls or processes have gaps. Without this clarity, recovery will be slower, more expensive and more disruptive.
Source: Beazley Risk & Resilience Surveys.
Among Singapore-based executives, concern over cyber risk rises sharply from 24% in 2024 to 30% in 2026, making it the leading risk today. Disruption risk remains stable, technology obsolescence declines, and IP risk is broadly flat, indicating a clear shift in priorities toward escalating cyber threats.
Resilience levels remain high across all four risk areas. While perceived resilience peaked in 2025 - most notably for technology obsolescence – preparedness sentiment has eased in 2026. Cyber resilience remains strong, and disruption and IP follow similar patterns, reflecting sustained confidence despite rising risk concerns.
Singapore-based executives demonstrate a broad, proactive approach to resilience, with a focus on risk management, loss prevention, and insurance-supported crisis capabilities. Investment in emerging technologies such as AI and strengthened cybersecurity also features prominently, reflecting awareness of evolving digital, operational, and strategic risks in an increasingly complex environment.
Source: Beazley Risk & Resilience surveys.
Both small and large Singapore-based organisations identify cyber risk as their top concern, reflecting shared exposure to digital threats. Larger firms express greater concern over digital disruption, while smaller organisations focus slightly more on technology obsolescence. Concern around IP risk remains broadly consistent regardless of organisational size.
Singapore-based organisations of all sizes report strong perceived preparedness across all four risk areas. Cyber resilience is marginally stronger among larger firms, while disruption resilience is consistent regardless of size. Smaller organisations express slightly lower confidence in managing technology obsolescence and intellectual property risks.
Small and large organisations anticipate cyber attack impacts in different ways. Smaller firms are more concerned about management time and long-term business disruption, while larger organisations place greater emphasis on data loss, regulatory exposure, and reputational damage. Both groups view third party liability and breach of contract risks as equally significant.
Cyber risk concern varies widely by industry sector, peaking in Energy, Transportation, and Property related industries. However, perceived preparedness is generally high, particularly in Healthcare & Life Sciences, Manufacturing, and Hospitality. Notably, Public Sector and Tech focused industries report lower confidence despite moderate risk concern, highlighting potential resilience gaps.
Across sectors, concerns over the impact of a cyber attack differ considerably. Data loss and regulatory exposure dominate in Manufacturing, Energy, Financial and Professional Services, and Tech, while reputational damage is most pronounced in Transportation and Hospitality. Healthcare and the Public Sector place greater emphasis on management time and operational disruption rather than fines or liability.