The vast majority of IT security budgets are allocated to preventing security breaches. However, Gartner predicts that by 2020, 60% of enterprises’ information security budgets will be allocated for rapid detection and response approaches, up from less than 10% in 2014. This is because enterprises are overly dependent on blocking and prevention mechanisms that are decreasingly effective against advanced attacks. Comprehensive protection requires an adaptive protection process integrating predictive, preventive, detective and response capabilities.
So how do organisations manage the challenges they face when migrating from the increasingly ineffective prevention methodologies to focus on detection and incident response?
There are two main technological developments that are driving this migration – Cognitive/AI and big data analytics.
The following two predictions were made by IDC in 2017:
• By 2018, 70% of enterprise cyber security environments will use Cognitive/AI technologies to assist humans in dealing with the vastly increasing scale and complexity of cyber threats
• By 2017, 50% of enterprise customers will leverage Analytics as a Service to help solve the challenge of combing through security-related data.
Add to this the increased reliance in Managed Security Services (predicted to grow at 10%+ CAGR to 2021), and it is clear that CISOs are looking outside their organisations for a solution.
We are already seeing this migration – the number of our customers using our Managed Security Services (MSS) to assist with monitoring security posture and take a predictive and responsive approach to security management is increasing exponentially.