Gartner: Detection and Response is Top Enterprise Security Priority

The spending strategy in enterprises will gross USD 90 Billion in 2017- recording a 7.6% increase over 2016

Gartner: Detection and Response is Top Enterprise Security Priority

Enterprise security is undergoing a dramatic change in 2017.
According to research firm Gartner, organizations are moving away from prevention-only approaches to focus more on detection and response.
The spending strategy in enterprises will gross USD 90 Billion in 2017- recording a 7.6% increase over 2016.
According to Sid Deshpande, principal research analyst at Gartner, "the shift to detection and response approaches spans people, process and technology elements and will drive a majority of security market growth over the next five years."

"While this does not mean that prevention is unimportant or that chief information security officers (CISOs) are giving up on preventing security incidents, it sends a clear message that prevention is futile unless it is tied into a detection and response capability," he said.

The research firm indicated that the spend on enhancing detection and response capabilities is expected to be a key priority for security buyers through 2020.

 
Skills shortages are further driving spending on security services, said the research firm.
 
"Many organizations lack established organizational knowledge of detection and response strategies in security because preventive approaches were the most common tactics for decades. Skill sets are scarce and, therefore, remain at a premium, leading organizations to seek external help from security consultants, managed security service providers (MSSPs) and outsourcers," added Deshpande.
 
Other factors impacting the enterprise security spend include:

  • Deception, endpoint detection and response (EDR)
  • Software-defined segmentation
  • Cloud access security brokers (CASBs)
  • User and entity behavior analytics (UEBA)

The new segments are taking away the spend from existing segments such as data security, enterprise protection platform (EPP) network security and security information and event management (SIEM).

On the services side, the rising number of point solutions in the security market that address detection and response is creating sprawl and manageability issues for CISOs and security managers, driving spending for management platforms and services.

"CISOs are keen to communicate the return on investment of their security strategy in terms of the business value associated with quick damage limitation, in addition to threat prevention and blocking," said Lawrence Pingree, research director at Gartner.

As enterprises shift toward balancing prevention with newer detection and response approaches, CISOs are changing how they measure the success of their security strategy

Add new comment