Change
Solutions for a better world Global Investor, 01/2017 Credit Suisse
Solutions for a better world
Global Investor, 01/2017
Credit Suisse
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
GLOBAL INVESTOR 1.17 —30<br />
“Bad news about cybersecurity is actually<br />
good news for the IT security industry.”<br />
Ulrich Kaiser<br />
Companies are spending<br />
most for network security<br />
Security and vulnerability management, and<br />
network security are the fastest growing<br />
segments within IT security. Corporate endpoint,<br />
and Web security are getting disrupted by next<br />
generation solutions. Source: IDC, CS estimates<br />
in USD bn<br />
40000<br />
35000<br />
30000<br />
25000<br />
20000<br />
15000<br />
10000<br />
5000<br />
0<br />
2012 2017<br />
Network security<br />
Security and vulnerability<br />
Endpoint security<br />
Identity and access management<br />
Web security<br />
Messaging security<br />
Other<br />
blocking cyberattacks. As a result, many organizations<br />
have adopted the detection-and-response<br />
approach to strengthen their security.<br />
New trends in cybersecurity<br />
+53<br />
%<br />
+83<br />
%<br />
We expect security technologies such as security<br />
information and event management<br />
(SIEM) and secure Web gateways (SWG) to<br />
evolve. Organizations are likely to increasingly<br />
focus on detection and response, because<br />
taking a preventive approach has not been<br />
successful in blocking malicious attacks so<br />
far and probably will not be successful in the<br />
future. Thus, businesses should balance their<br />
spending and include both.<br />
We can imagine security spending to<br />
evolve to become more service-driven as businesses<br />
continue to struggle with an overall<br />
lack of cybersecurity talent in the industry.<br />
Managed detection and response (MDR)<br />
is growing as organizations are faced with<br />
having to use both technology and human<br />
expertise to pinpoint risks and improve the cyber<br />
environment. This is especially relevant in<br />
addressing insider threats and targeted advanced<br />
threats.<br />
Hackers wanted – high salary reward<br />
The purchase and implementation of new security<br />
technologies is vital to protect businesses,<br />
and so is the development of cybersecurity<br />
skills in employees, which are not<br />
reflected in the Gartner estimates and come<br />
as additional costs. These are justified by a<br />
shortage of skilled security professionals,<br />
which is both dangerous and expensive since<br />
it leaves businesses vulnerable to attack, resulting<br />
in reputational damage and data loss.<br />
The most highly specialized technical skills<br />
are the ones in greatest demand and claiming<br />
high salaries. Businesses are seeking professionals<br />
with expertise in software development,<br />
attack mitigation, intrusion detection,<br />
network monitoring and other areas of cybersecurity.<br />
They need not look far: convince<br />
hackers to change allegiance, vindicate them<br />
and use their skills to maintain a safe cyber<br />
environment. Hackers are motivated by a multitude<br />
of reasons, such as profit, protest or<br />
simply challenge. Another reason, and one<br />
that can be used for the good, is to evaluate<br />
system weaknesses to help formulate defenses<br />
against potential hackers.<br />
Ulrich Kaiser<br />
Research Analyst<br />
+41 44 334 56 49<br />
ulrich.kaiser@credit-suisse.com