Security Services Threat Intelligence Market to reach $905 million by 2014

by CXOtoday Staff    Feb 01, 2012

Businesses are struggling to protect themselves as outside threats become more resistant to signature-based security tools, says IDC.

According to new research from International Data Corporation (IDC) the security services threat intelligence market is forecast to grow from $198 million in 2009 to $905 million in 2014 as organizations struggle to keep pace.

The research firm said that the security services threat intelligence market is made up of advanced security event monitoring and management technologies that incorporate a variety of threat-related information sources to develop predictive security.

A continually evolving breed of unknown, persistent, targeted, and adaptive security threats is pushing businesses’ enterprise IT/security infrastructure to their limits and driving the expansion of the security services threat intelligence market, the report said.

“Businesses are struggling to protect themselves as these outside threats become more resistant to signature-based security tools,” said Christine Liebert, Senior Analyst, Security Services. “It is becoming clear that many of these emerging threats cannot be defended against in-house, creating a shift in security posture toward being more proactive.”

IDC said that emerging Web application and other difficult-to-detect attacks are changing the security protection landscape and, subsequently, enterprise security posture. To ensure that enterprise network, application, data, and endpoints can remain secure (clean of malware and breaches), anti-malware products and services are evolving to deal with these threats and reducing reliance on general signatures by instead adopting other forms of detection.

The research found that many organizations, despite having implemented some of the more standard countermeasures like firewalls, antivirus, IDs etc. still do not have visibility across their environment to understand what is happening at any given time.

Attacks are becoming shorter (lasting less than a couple of hours or only a few minutes) and more highly targeted (e.g., specific URL, person, company, or IT asset), further complicating detection, mitigation, and remediation.

Signature-based tools like antivirus, firewalls, and intrusion prevention are only effective against 30–50 percent of the current security threats, the report said.

IDC said that attackers have enlarged their scope to include commercial SMBs offering high-value targets like financial information, intellectual property, and other proprietary data over the past five years.