Technology

Cybersecurity - R&D Tax Benchmark

What proportion of total business expenses do Australian cybersecurity typically claim as R&D under the RDTI?

Typical range

20–55%

Direct (core) R&D as % of expenses

Elevated but plausible

up to 75%

Still defensible with strong evidence

Unusual - review carefully

> 88%

May still be valid; expect AusIndustry scrutiny

Supporting R&D

3–10%

Indirect / supporting activities

What drives R&D intensity in this sector

Detection-engine and protocol R&D qualifies; SOC operations and managed-service delivery do not.

Sector disclaimer

Product-oriented cyber firms regularly sit 30–55%. Higher percentages need a clear distinction between platform R&D and security-operations service delivery.

ATO & AusIndustry context

Threat-intel collection and incident response are operational, not experimental.

Estimate your own RDTI offset

Plug your turnover, total expenses and notional R&D deductions into our free estimator and benchmark them against this sector range automatically.

Open the offset estimator

More benchmarks in Technology

Educational benchmark only - not an eligibility test or tax advice. Final eligibility depends on whether your activities meet the s.355-25 / s.355-30 core and supporting R&D definitions and is determined by AusIndustry on registration.