TREND: Movement from “compliance-first” attitude to security towards greater concern around impact of emerging threats

Overview: A primary driver for organisations around security investment has been premised on responding to regulatory and auditing requirements first - i.e. “ticking the security box” in response.

However as threats increase and more high-profile data breaches occur there is an increased emphasis on effectiveness of solutions and a fear of data breach and knock-on impacts.

One practical example is that of security log management solutions whose traditional emphasis has been compliance focussed, and most widely used functionality focussed on log consolidation to support such efforts. However newer emerging solutions within the SIEM space extend towards actual threat mitigation in a dynamic context, correlation between log data and other data such as network flows, and integration with threat intelligence databases.  End-Users deploying such solutions are hence more likely to use the broad spectrum of available features.

Impact: reduced barrier to security technology adoption, reduced reliance on compliance and regulatory initiatives to drive uptake on new PACs innovations.

TREND: General increase in security related policy and regulation – particularly in relation to data protection regulations

Overview: Data Protection regulations, particularly those in the EU, are on a path towards becoming more harmonised and stringent on privacy requirements for organisations. The number of countries globally adopting some form of Data Protection regulations is also increasing