Cyber security is an increasing challenge for all individuals and organisations; the threat landscape is expanding as national governments join the long list of antagonists aiming to create breaches and chaos and we’ve got beyond the point at which ITC networks can be protected by applying just signature-based software and processes. Larger organisations have deployed Security Operations Centers (SOCs) to manage the issues, but skilled security specialists are expensive and increasingly difficult to find. The solution has been to employ Managed Security Service Suppliers (MSSPs) to provide tools and help with identifying vulnerabilities and remediation of successful attacks. However these services are also expensive as their suppliers apply significant people resources to be successful.
In 2019 I expect to see a significant growth in the use of Managed Detection and Response (MDR) services as a cheaper – and sometimes more efficient – solution for the growing problems. MDR suppliers all use AI and ML (albeit in different ways) to monitor and sometimes remediate attacks. Their services are based on sharing threat intelligence across multiple countries and SOCs to widen the ability of organisations to protect themselves.
In the Figure I compare the relative values of MSSP and MDR services across a number of criteria. MDR will grow in medium-sized countries that allow their log data to be exporter across country borders and share in an anonymous way for protecting others. These include the UK (paradoxically given its decision to leave the EU), Nordic countries, the Netherlands and Australia amongst others. The US market itself is so large that almost all cyber security services can be based in-country. The inhibitor of MDR growth is the cultural reticence of organisations in certain countries such as Germany, France and Italy to allow the cross-country movement of log data.
Navigate our predictions – intro 1 2 3 4 5 6 7 8 9 10
©ITCandor Limited – unauthorised copying of this content is illegal and will be rigorously defended by us through court action
One Response to “Cyber security goes multi-tenant and cross-border”
Read below or add a comment...