Global IT Security Spending Will Top $81 Billion In 2016 - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IT Leadership // Security & Risk Strategy
01:06 PM
Connect Directly

Global IT Security Spending Will Top $81 Billion In 2016

Gartner predicts worldwide spending on information security products and services will reach $81.6 billion in 2016 -- an increase of 7.9% from last year.

9 Promising Cloud Security Startups To Watch
9 Promising Cloud Security Startups To Watch
(Click image for larger view and slideshow.)

Global spending on information security products and services will reach $81.6 billion in 2016, according to a new report from Gartner. This prediction marks an increase of 7.9% from last year.

The largest areas of information security spending are consulting and IT outsourcing, Gartner stated. Security testing, IT outsourcing, and data loss prevention (DLP) will be the biggest opportunities for growth through the end of 2020.

Another crucial area of industry growth is preventive security. Many IT pros tend to opt for preventive measures when planning their security strategies, a trend poised to continue in years to come.

[Read: 'QuadRooter' security flaw leaves 900M Android devices vulnerable.]

However, preventive measures have proven weak in blocking cyberattacks. As a result, more organizations have adopted the detection-and-response approach to strengthen their security.

Security technologies, such as security information and event management (SIEM) and secure web gateways (SWG) are expected to evolve to support this trend. In particular, SWG tech will maintain a 5% to 10% growth through 2020.

"Organizations are increasingly focusing on detection and response, because taking a preventive approach has not been successful in blocking malicious attacks," said Gartner senior research analyst Elizabeth Kim in a statement. "We strongly advise businesses to balance their spending to include both."

Kim said she anticipates security spending will evolve to become more service-driven as businesses continue to struggle with an overall lack of cyber-security talent in the industry.

Managed detection and response (MDR) is growing as organizations are challenged to use both technology and human expertise to pinpoint risks and maintain a safe cyber environment. This is especially relevant in addressing insider threats and targeted advanced threats.

In its report, Gartner dives into a few specific areas of security where businesses are predicted to spend their security budgets this year.

For example, the average price of firewalls will increase by a minimum of 2% to 3% year-over-year through the end of 2018. As organizations demand greater bandwidth and more devices, service providers and web-scale businesses are deploying bigger and pricier firewalls.

(Image: MF3d/iStockphoto)

(Image: MF3d/iStockphoto)

By 2019, half of midsize and large businesses will implement larger and more advanced inspection features to their network firewalls. In addition to larger bandwidth and better performance, businesses will also need their firewalls to group together other features such as intrusion prevention and web filtering.

Ninety percent of businesses are forecast to adopt at least one form of DLP by 2018; currently, only half of them do. Many organizations launch DLP for regulatory compliance and IP protection, but new technologies will also provide machine learning, data-matching, image analysis, and user entity and behavior analytics.

Some areas of information security are lagging behind. Consumer security software, endpoint protection platforms, and secure email gateways are exhibiting slower growth as a result of commoditization, Gartner noted.

While the purchase and implementation of new security technologies is key to protecting businesses, so is the development of cyber-security skills in employees. The shortage of skilled security professionals is both dangerous and expensive. It leaves businesses vulnerable to attacks resulting in reputational damage and data loss.

The most highly technical skills are the ones in greatest demand. Businesses are seeking pros with expertise in software development, attack mitigation, intrusion detection, network monitoring, and other areas of cyber-security.

Kelly Sheridan is the Staff Editor at Dark Reading, where she focuses on cybersecurity news and analysis. She is a business technology journalist who previously reported for InformationWeek, where she covered Microsoft, and Insurance & Technology, where she covered financial ... View Full Bio

We welcome your comments on this topic on our social media channels, or [contact us directly] with questions about the site.
Comment  | 
Print  | 
More Insights
InformationWeek Is Getting an Upgrade!

Find out more about our plans to improve the look, functionality, and performance of the InformationWeek site in the coming months.

Becoming a Self-Taught Cybersecurity Pro
Jessica Davis, Senior Editor, Enterprise Apps,  6/9/2021
Ancestry's DevOps Strategy to Control Its CI/CD Pipeline
Joao-Pierre S. Ruth, Senior Writer,  6/4/2021
IT Leadership: 10 Ways to Unleash Enterprise Innovation
Lisa Morgan, Freelance Writer,  6/8/2021
White Papers
Register for InformationWeek Newsletters
Current Issue
Planning Your Digital Transformation Roadmap
Download this report to learn about the latest technologies and best practices or ensuring a successful transition from outdated business transformation tactics.
Flash Poll