Home Security Security focus shifts from prevention to detection: Gartner

Enterprises are moving away from prevention only approaches to their security management to focus more on detection and response, with the move expected to drive the lion’s share of future growth in the worldwide security market, according to a newly published report.

The report, from analyst firm Gartner, reveals that the shift to detection and response approaches will see spending on security expected to reach US$90 billion in 2017, an increase of 7.6% over 2016.

It says spending on security worldwide will climb to US$113 billion by 2020, with spending on enhancing detection and response capabilities expected to be a key priority for security buyers throughout 2020.

"The shift to detection and response approaches spans people, process and technology elements and will drive a majority of security market growth over the next five years," said Sid Deshpande, principal research analyst at Gartner.

"While this does not mean that prevention is unimportant or that chief information security officers are giving up on preventing security incidents, it sends a clear message that prevention is futile unless it is tied into a detection and response capability."

According to Deshpande, skills shortages are further driving spending on security services.

He says many organisations lack established organisational knowledge of detection and response strategies in security because preventive approaches were the most common tactics for decades.

“Skill sets are scarce and, therefore, remain at a premium, leading organisations to seek external help from security consultants, managed security service providers (MSSPs) and outsourcers.”

Gartner notes that the need to better detect and respond to security incidents has also created new security product segments such as deception, endpoint detection and response (EDR), software-defined segmentation, cloud access security brokers (CASBs), and user and entity behavior analytics (UEBA).

Deshpande says these new segments are creating net new spending, but are also taking spend away from existing segments such as data security, enterprise protection platform (EPP) network security and security information and event management (SIEM).   

On the services side, Gartner says the emergence of specialised managed detection and response services is a threat to traditional MSSPs.

And, the analyst firm says the rising number of point solutions in the security market that address detection and response is creating sprawl and manageability issues for CISOs and security managers, driving spending for management platforms and services that are better integrated with adjacent markets.

Gartner also says that as enterprises shift toward balancing prevention with newer detection and response approaches, CISOs are changing how they measure the success of their security strategy.

“All security investments are being measured on how they contribute to the shift in mindset. Even preventive security controls, such as EPP, firewalls, application security and intrusion prevention systems (IPSs), are being tweaked to provide more intelligence into security operations, analytics and reporting platforms,” said Lawrence Pingree, research director at Gartner.

"CISOs are keen to communicate the return on investment of their security strategy in terms of the business value association with quick damage limitation.

"The key enabler for CISOs in this endeavour is to get visibility across their security infrastructure to make better decisions during security incidents. This visibility will enable them to have a more strategic and risk-based conversation with their board of directors, CFO and CEO about the direction of their security programme."

 The Gartner security market report is here.

LEARN NBN TRICKS AND TRAPS WITH FREE NBN SURVIVAL GUIDE

Did you know: Key business communication services may not work on the NBN?

Would your office survive without a phone, fax or email?

Avoid disruption and despair for your business.

Learn the NBN tricks and traps with your FREE 10-page NBN Business Survival Guide

The NBN Business Survival Guide answers your key questions:

· When can I get NBN?
· Will my business phones work?
· Will fax & EFTPOS be affected?
· How much will NBN cost?
· When should I start preparing?

DOWNLOAD NOW!

Peter Dinham

Peter Dinham is a co-founder of iTWire and a 35-year veteran journalist and corporate communications consultant. He has worked as a journalist in all forms of media – newspapers/magazines, radio, television, press agency and now, online – including with the Canberra Times, The Examiner (Tasmania), the ABC and AAP-Reuters. As a freelance journalist he also had articles published in Australian and overseas magazines. He worked in the corporate communications/public relations sector, in-house with an airline, and as a senior executive in Australia of the world’s largest communications consultancy, Burson-Marsteller. He also ran his own communications consultancy and was a co-founder in Australia of the global photographic agency, the Image Bank (now Getty Images).

 

 

 

 

Connect

Join the iTWire Community and be part of the latest news, invites to exclusive events, whitepapers and educational materials and oppertunities.
Why do I want to receive this daily update?
  • The latest features from iTWire
  • Free whitepaper downloads
  • Industry opportunities