Gartner analysts this week forecast that the worldwide security technology and services market would grow 8.7 percent this year to $67.2 billion as cyber threats become increasingly sophisticated and dangerous.
The analysts, attending a Gartner summit on security and risk management at National Harbour, MD, said the market could grow to more than $86 billion in 2016.
“With security being one of the top IT concern areas, the prospect of strong continued growth is assured,” said Ruggero Contu, a research director at the research company. “The consistent increases in the complexity and volume of targeted attacks, coupled with the necessity of companies to address regulatory or compliance-related issues, continue to support healthy security market growth.”
The analysts described bring-your-own-device (BYOD) as a megatrend that would have a far-reaching influence on the security industry, but addressing the challenges it posed created opportunities for technology service providers.
“Firstly, with the shift from device security to app/data security there is a chance for some security TSPs to capture endpoint protection budgets,” the Gartner analysis said. “Being able to understand the device type and how your users are computing today is just as important as who they are. An opportunity exists for those able to determine that context, and provide it for other points of influence, such as the network or applications.”
Gartner said the amount of data required to effectively detect advanced attacks and, at the same time, support new business initiatives, would grow rapidly over the next five years.
“To support the growing need for security analytics, changes in information security people, technologies, integration methods and processes will be required, including security data warehousing and analytics capabilities, and an emerging role for security data analysts within leading-edge enterprise information security organizations,” said Eric Ahlm, a research director at Gartner.
His colleague Lawrence Pingree said mitigating the threat from advanced targeted attacks (ATAs) required a defense-in-depth strategy across multiple security controls.
“Enterprises should employ a layered approach model,” he said. “Organizations must continue to set the security bar higher, reaching beyond many of the existing security and compliance mandates in order to either prevent or detect these newly emergent attacks and persistent penetration strategies.”
The analysts said attackers, especially those with significant financial motivation, had devised strategies centered on penetrating some of the most commonly deployed security controls -- largely signature-based antivirus and signature-based intrusion prevention -- most often by using custom or dynamically generated malware for the initial breach and data-gathering.
Advanced attackers were now capable of maintaining footholds inside an organization once they breached security controls. “They do it either through the use of malware or, even if the malware is detected and removed, via postmalware use of user credentials gathered during the period of time the malware was active,” the Gartner analysis said.
- About Corero
- Investor Relations
- News Room
- Executive Management Team
- Corero Offices
- Contact Us