Gartner points out that companies are shifting the focus of their security spending strategies from prevention-only to detection and response in 2017. Global information security spending is expected to reach US$ 90 billion this year, an increase of 7.6% with for 2016, and reach US$ 113 billion by 2020. Gartner analysts estimate that better detection and response capabilities will be a priority in security solution buyers' spending by 2020.
“The shift in focus to detection and response encompasses people, processes and elements of technology and will drive much of the growth of the security market over the next five years. Security Officers) are giving up on guarding against security incidents, it's a clear message that prevention is futile if it's not coupled with a detection and response capability," says Sid Deshpande, Research Analyst at Gartner.
Deshpande says skills shortages are increasingly driving spending on security services. Many companies lack organizational knowledge of detection and response strategies because a focus on prevention was the most common tactic for decades. Skill sets are scarce and therefore highly coveted, leading companies to seek outside help from consultants, managed security service providers (MSSPs) and third parties.
The need to better detect and respond to security incidents has also created new product segments aimed at security, such as deception, endpoint detection and response, software-defined segmentation, cloud access security brokers and user and entity behavior analytics. These newer segments are demanding new spending as well as taking the expense out of existing areas such as data security, EPP (Enterprise Protection Platform), network security and event management and security information.
On the services side, the emerging need for managed solutions that specialize in detection and response is a threat to conventional MSSPs. The growing number of point solutions in the security market that meet detection and response demands is causing expansion and management issues for CISOs and security managers, leading to spending on management platforms and services that are better integrated with adjacent markets. .
As companies move to balanced prevention with new detection and response capabilities, CISOs are changing the way they measure the success of their security strategies. All investments in this area are being evaluated by how they contribute to this paradigm shift. Even preventive security controls such as EPP, firewalls and intrusion prevention systems and application security are being called upon to provide more intelligence for security operations, analytics and reporting platforms.
"CISOs are quick to communicate the return on investment of their security strategies in terms of business value associated with fast damage limitation, as well as threat prevention and blocking," explains Lawrence Pingree, Research Director at Gartner. "The key factor for CISOs on this journey is that they will have visibility into the entire security infrastructure to improve decision making during security incidents. This possibility will allow them to have a more strategic and risk-based conversation with the Board , the CFO and the CEO on the direction of their security programs."
EN 
PT 
