The intrusion detection team at a Fortune 500 company was constantly responding to a broadening array of threats. The attacks seemed to be coming faster and faster each quarter. The team was often playing catch-up in their attempts to respond more quickly, resulting in more errors. The team and situation were not unique: Understaffed, overworked and error-prone security teams make security automation an attractive approach for many IT and security leaders.
Fundamental shifts in security markets and threat dynamics are driving significant changes for solution providers, with far-reaching impacts on the types of products they offer, their capabilities and how those products are brought to market.
“ By 2021, requirements for greater efficiency in threat response will drive 20% of buyers to heavily weight automation in buying criteria”
“Technology business-unit leaders must rapidly embrace key market trends and changes to maintain their relevance and competitiveness,” says Deborah Kish, Gartner principal research analyst.
Based on the 2018 Gartner Predicts for Security Solutions research, three key security market trends shape 2018 and beyond.
Automation will be key
Across multiple security market segments, Gartner identified a growing demand for automation of tasks historically performed primarily by individuals. This automation will be enabled by the advancement of predictive and prescriptive analytics.
Security buyers are expected to demand more advanced automation capabilities. Gartner predicts by 2021, requirements for greater efficiency in threat response will drive 20% of buyers to heavily weight automation in buying criteria. This shift is driven by the need for faster response to threats, and customer adoption of continuous, adaptive risk and trust-assessment-focused security programs.
Technology service provider actions: Invest as much time in creating metrics for automation as you do for feature enhancement.
Exploit the benefits of M&A opportunities
Given the large number of vendors, companies continue to pursue M&As, primarily to expand existing portfolios into adjacent market segments and improve competitiveness, but also to enter additional markets. For example, while mobile malware represents only about 7.5% of total malware reported in standard tests today, Gartner expects mobile malware to quickly become roughly one-third of the total reported malware by 2019. Some endpoint protection platform (EPP) vendors such as Symantec are already expanding their mobile endpoint security offerings through acquisitions, as witnessed by Symantec’s 2017 acquisition of Skycure. Gartner predicts that by 2020, at least one-third of leading EPP vendors will acquire mobile threat detection companies to complete their endpoint protection suites.
Technology service provider actions: Dedicate staff to identify and vet opportunities, execute transactions and support integration across the entire business.
Continue to incorporate regulatory and compliance needs
Regulations have created buyer angst, reinvigorating data protection needs in broad support for compliance activity and the European General Data Protection Regulation (GDPR). The need for adherence to the requirements of regulatory mandates, such as GDPR, Payment Card Industry (PCI) and Health Insurance Portability and Accountability Act (HIPAA), will drive further partnerships and acquisitions between providers in the data security space. Optimize opportunities for success by aligning product capabilities and messaging around the traditional drivers of compliance and risk, and ensure solutions address the requirements of continuous security strategies such as continuous adaptive risk and trust assessment (CARTA).
Technology service provider actions: Help your customers apply a continuous risk- and trust-based assessment approach to data by shaping your product capabilities with CARTA in mind.