Gartner Research

Intelligent and Automated Security Controls Impact the Future of the Security Market

Published: 30 October 2015

ID: G00290098

Analyst(s): Lawrence Pingree

Summary

Product leaders need insights into the expansion of threat intelligence and adaptive security capabilities across the security market. These new emerging capabilities will be instrumental in defining the future of adaptive security and how incident response automation will evolve into the future.

Table Of Contents
  • Impacts

Analysis

  • The Future of Intelligence-Aware Security Controls
  • Intelligence Awareness Moves Beyond SIEM to Intelligence-Led Detection and Adaptive Response
  • Key Trends
    • Threat Intelligence, Community Intelligence Sharing and Context-Aware Security Trends Continue as Emerging Areas of Buyer Interest
    • Automating Triage and Response Becomes Attractive to Some Buyers
    • Issues of Threat Intelligence Accuracy, Freshness, Validity and Privacy Concerns Persist
    • Incorrectly Automating Still Seen as a Career-Limiting Move by Security Practitioners, but Some See a Data Breach as Worse

Impacts and Recommendations

  • Third-party intelligence-sharing partnerships continue to expand to address detection weaknesses and context gaps in provider solutions, further commoditizing provider-only threat intelligence feeds
  • Security provider cross-product integrations have emerged to automate threat triage, response and mitigation efforts, which further entice customer buying against those lacking solid ecosystem integrations
  • Intelligent, adaptive security controls will require security solution providers to leverage threat intelligence standards and application programming interfaces (APIs) to avoid costly research and development investments and efficiently add automation capabilities
  • Product leaders must realize threat intelligence platforms have emerged at the confluence of intelligence sharing and intelligence-aware adaptive-defense solution integrations as the "pipelines" for sharing and orchestration

Gartner Recommended Reading

©2019 Gartner, Inc. and/or its affiliates. All rights reserved. Gartner is a registered trademark of Gartner, Inc. and its affiliates. This publication may not be reproduced or distributed in any form without Gartner’s prior written permission. It consists of the opinions of Gartner’s research organization, which should not be construed as statements of fact. While the information contained in this publication has been obtained from sources believed to be reliable, Gartner disclaims all warranties as to the accuracy, completeness or adequacy of such information. Although Gartner research may address legal and financial issues, Gartner does not provide legal or investment advice and its research should not be construed or used as such. Your access and use of this publication are governed by Gartner’s Usage Policy. Gartner prides itself on its reputation for independence and objectivity. Its research is produced independently by its research organization without input or influence from any third party. For further information, see Guiding Principles on Independence and Objectivity.

Already have a Gartner Account?

Purchase this Document

To purchase this document, you will need to register or sign in above

Become a client