安全分析市場 - 增長、趨勢、COVID-19 影響和預測（2022-2027）

在預測期內，安全分析市場預計將以 10.7% 的複合年增長率增長。

互聯網的迅速傳播極大地增加了網絡攻擊的類型和頻率。許多著名的網絡安全解決方案都被用來對抗這些攻擊，但計算機網絡上大數據的生成正在迅速使這些傳統解決方案過時。

主要亮點

• 安全分析必須利用自動化的安全情報與 IT 資產進行互操作並響應不斷變化的環境。它還應該與用於戰術協調和自動化的安全策略控制緊密集成。
• 隨著物聯網的出現以及數字化轉型的速度和範圍不斷擴大，當今的網絡基礎設施越來越容易受到網絡攻擊。大數據分析需要快速處理各種來源的高速、海量數據，快速識別異常和攻擊模式，減少系統漏洞，提高容錯能力，很有可能成為高效網絡安全解決方案的必要組成部分。
• 安全分析解決方案從基於規則的檢測擴展到機器學習 (ML) 和人工智能 (AI) 等數據科學技術。這是為了解決外部問題，例如增加數據量、增加基礎設施複雜性以及缺乏知識淵博的安全專業人員。安全團隊必須在大多數組織環境中集成大量機器生成的數據和安全分析，以有效處理威脅。
• 隨著數據洩露變得更加普遍並且受影響的記錄量變得越來越高，各種規模的組織都將承擔更高的成本。由世界領先組織組成的獨立非營利組織 ISF 表示，2021 年數據洩露的數量、規模和成本將繼續上升。根據 IBM 和 Ponemon Institute 的統計，美國一次數據洩露的損失估計為 735 萬美元，幾乎是全球 362 萬美元的兩倍。因此，公司越來越多地將威脅搜尋作為一種預防措施。
• COVID-19 疫情對全球經濟產生了重大影響，改變了人們交流和工作的方式。這些巨大的變化正在幫助垃圾郵件發送者和黑客在網絡世界中茁壯成長。出於這個原因，預計安全分析市場將很快從大流行導致的網絡攻擊增加中受益匪淺。

主要市場趨勢

網絡安全分析佔據很大份額

• 網絡安全應用程序佔全球安全分析解決方案需求的最大份額。下一代防火牆 (NGFW)、入侵防禦系統 (IPS) 和安全 Web 網關 (SWG) 等安全解決方案部署在企業網絡和公共互聯網之間的連接點。大多數企業應用程序、用戶和現場設備都可以查看和控制進出企業網絡的所有流量。
• 與其他問題域不同，安全分析不適用於統計分析。在大多數情況下，攻擊者傾向於跟上變化，這使得創建網絡安全分析解決方案對程序員來說幾乎是不可能完成的任務。因此，有必要進行持續的網絡監控，尋找有害威脅或入侵者的跡象。網絡監控通常與防火牆、防病毒軟件和 IDP 等其他安全工具結合使用。網絡安全監控可以手動完成，也可以使用軟件自動完成。
• 此外，基於貝葉斯概率論的傳統網絡安全分析解決方案，通過掌握問題的所有要素並以數學方式計算可能的結果，可以高精度地預測某事發生的可能性，它們正在被學習算法所取代，這使得網絡安全分析解決方案更可靠。
• 鑑於現有攻擊的頻率和多樣性，以及未來更具破壞性的新攻擊的威脅，網絡安全已成為網絡安全的中心話題。網絡安全措施使計算機、用戶和程序能夠在安全的環境中執行關鍵功能。

北美占主要份額

• 憑藉鼓勵創新的政府政策、龐大的工業基礎和高購買力，北美、美國和加拿大是新技術引進和推廣的最重要地區之一。美國已成為多個行業安全分析的重要市場。大多數安全分析平台開發人員都位於該國。
• 北美的數據洩露、惡意軟件攻擊和高級持續威脅的發生率很高，這有助於安全分析市場的區域增長。影響北美安全分析採用的其他因素包括對安全合規管理系統的需求以及對網絡安全解決方案的投資增加。
• 該地區的最終用戶行業一直是分析解決方案的先驅和早期採用者，以便在其他地區的競爭對手中獲得優勢。出於這個原因，企業和小型企業正在構建大型數據庫和基礎設施，以支持使用主動安全分析。這些解決方案在該地區的採用還受到對高級針對性攻擊造成的損害的認識的提高以及安全分析解決方案識別和響應實時 APT 和 ATA 的能力的推動。
• Cylance Inc.（人工智能驅動、預防優先的安全解決方案的領先供應商）和 Securonix（一家在北美開展安全分析和用戶和實體行為分析業務的 SIEM）等公司已將 CylancePROTECT 和 Securonix Security Analytics 結合在一起。宣佈建立合作夥伴關係以支持平台新版本的互操作性，可以看出安全分析中的雲解決方案趨勢已經開始。

競爭格局

網絡安全市場是 IBM 和 McAfee 等技術和網絡巨頭的所在地，並由多家全球和地區參與者組成。此外，該市場的特點是產品滲透率不斷提高，產品差異化適度，競爭力強。市場上的主要參與者包括 Arbor Networks Inc、RSA Security LLC (RSA) 和 Cisco。

• 2022 年 7 月，CloudStrike 的新雲威脅追蹤服務 Falcon OverWatch Cloud Threat Hunting 將推出，使安全團隊能夠持續識別源自和駐留在雲環境中的複雜和隱蔽威脅。這使現場分析師能夠識別危及敏感數據的漏洞。
• 2022 年 4 月，CrowdStrike 和 Mandiant 結成戰略聯盟，幫助聯合客戶調查、補救和防禦影響全球企業的不斷演變的網絡安全事件。作為交易的一部分，Mandiant 將使用 CrowdStrike Falcon 平台和訂閱選項為聯合客戶提供主動諮詢服務和事件響應 (IR) 服務。

其他福利

• Excel 格式的市場預測 (ME) 表
• 3 個月的分析師支持

目錄

第 1 章 簡介

• 調查先決條件
• 調查範圍

第二章研究方法論

第三章執行摘要

第四章市場動態

• 市場概況
• 市場驅動力
  • 日益複雜的威脅和安全妥協
  • 不斷增長的物聯網和 BYOD 趨勢
• 市場限制
  • 缺乏數據集成和連接性
• 行業價值鏈分析
• 行業吸引力搬運工五力分析
  • 新進入者的威脅
  • 買方/消費者議價能力
  • 供應商的議價能力
  • 替代品的威脅
  • 競爭對手之間的競爭
• COVID-19 的市場影響評估

第五章市場細分

• 按申請
  • 網絡安全分析
  • 應用安全分析
  • 網絡安全分析
  • 端點安全
• 按終端用戶行業
  • 衛生保健
  • 國防/安全
  • 銀行和金融服務
  • 通信/IT
• 按地區
  • 北美
  • 歐洲
  • 亞太地區
  • 拉丁美洲
  • 中東/非洲

第 6 章 競爭格局

• 公司簡介
  • Alert Logic Inc.
  • Arbor Networks Inc.
  • Broadcom Inc.（Symantec Corporation）
  • Cisco Systems Inc.
  • RSA Security LLC
  • Hewlett-Packard Enterprise Co.
  • IBM Corporation
  • Logrhythm Inc.
  • Fireeye Inc.
  • Splunk Inc.
  • Fortinet Inc.
  • McAfee LLC
  • Micro Focus International PLC

第七章投資分析

第八章市場機會與未來趨勢

The Security Analytics market is expected to grow with a CAGR of 10.7% during the forecast period. The rapid growth of the internet has resulted in an exponential increase in the type and frequency of cyber attacks. Although many well-known cybersecurity solutions are utilized to counteract these attacks, the generation of Big Data over computer networks rapidly renders these traditional solutions obsolete.

Key Highlights

• Security analytics interoperate with IT assets and leverage automated security intelligence to keep up with the constantly changing landscape. It should also be tightly integrated with security policy controls for tactical adjustments and automation.
• The current network infrastructure is becoming more vulnerable to cyberattacks due to the emergence of IoT and the expanding speed and scope of digital transformation. Due to the requirement for quick processing of the high-velocity, high-volume data from various sources to identify anomalies and attack patterns as soon as possible to reduce the vulnerability of the systems and increase their resilience, big data analytics will be a necessary component of any efficient cyber security solution.
• Security analytics solutions have expanded from rules-based detection to data science methods, such as Machine Learning (ML) and Artificial Intelligence (AI). This is in response to external issues such as increasing data volumes, sophisticated infrastructure, and a lack of knowledgeable security specialists. Security teams must integrate security analytics with the vast amounts of machine-generated data in most organizational contexts to handle threats effectively.
• The increased pervasiveness of data breaches and the higher volume of impacted records result in far higher costs for organizations of all sizes. According to ISF, an independent and not-for-profit association of leading organizations worldwide, the number, magnitude, and costs of data breaches will continue on their upward trajectories in 2021. According to statistics from IBM and Ponemon Institute, the price of a breach in the United States is estimated at USD 7.35 million, or nearly double the USD 3.62 million it costs globally. As a result, organizations are increasingly concentrating on threat hunting as a preventive measure.
• The COVID-19 epidemic significantly impacts the world economy and changes people's communication and work. These drastic changes are helping spammers and hackers thrive in the cyber world. Because of this, it is predicted that the security analytics market will soon benefit significantly from the rise in cyberattacks caused by the pandemic.

Key Market Trends

Network Security Analytics to Account for Significant Share

• Network security applications are the most significant global demand for security analytics solutions. Security solutions such as a next-generation firewall (NGFW), intrusion prevention system (IPS), and secure web gateway (SWG) were deployed at the point of connection between the corporate network and the public Internet. Most corporate applications, users, and devices located on-site provided visibility and control over all traffic entering and leaving the corporate network.
• Unlike other more well-behaved problem domains, security analysis does not naturally lend itself to statistical analysis. In most cases, attackers tend to constantly adapt to changes, making the fabrication of network security analytics solutions an almost impossible task for programmers. Hence continuous network monitoring is required, looking for indications of harmful or intrusive threats. It is often used with other security tools like firewalls, antivirus software, and IDPs. Monitoring for network security may be done manually or automatically using the software.
• Further, as the traditional network security analytics solutions based on the Bayesian probability theory, which states it's possible to predict with high accuracy the likelihood of something happening by capturing every element of a problem and calculating possible outcomes mathematically, are being replaced with machine learning algorithms, due to this network security analytics solutions are getting more reliable.
• Given the frequency and variety of existing attacks and the threat of new and more destructive future attacks, network security has become a central topic in cybersecurity. Network security measures allow computers, users, and programs to perform critical functions in a secure environment.

North America to Account for Major Share

• North America, in the US and Canada, with their supportive government policies to encourage innovation, huge industrial base, and high purchasing power, is one of the most critical regions for adopting and expanding new technology. In several industries, the US is a significant market for security analytics. The majority of security analytics platform developers are found in this country.
• North America has a higher incidence of data breaches, malware attacks, and advanced persistent threats, contributing to the regional growth of the security analytics market. Other factors influencing the adoption of security analytics in North America include the demand for security compliance management systems and rising investment in cybersecurity solutions.
• End-user industries in the region have been pioneers and early adopters of analytics solutions to remain ahead of the competition in other regions. This has helped enterprises and SMBs create massive databases and infrastructure to support the use of security analytics in a proactive measure. The adoption of these solutions in the region is also fueled by rising awareness of the damage caused by advanced targeted threats and the capacity of security analytics solutions to identify and address real-time APT or ATA.
• Companies such as Cylance Inc., the leading provider of AI-driven, prevention-first security solutions, and Securonix, a provider of SIEM and user and entity behavioral analytics operating in North America in security analytics, announced a partnership to support the interoperability of CylancePROTECT with the new release of the Securonix Security Analytics Platform indicating the emerging trend towards cloud solution in security analytics.

Competitive Landscape

The network security market comprises several global and regional players, with the presence of technology and networking giants such as IBM and McAfee. Further, this market is characterized by growing levels of product penetration, moderate product differentiation, and high levels of competition. Some key players in the market are Arbor Networks Inc, RSA Security LLC (RSA), and Cisco.

• In July 2022, Falcon OverWatch Cloud Threat Hunting, a new cloud threat hunting service from Crowdstrike, was launched, giving security teams the capability to continuously identify sophisticated and covert threats that originate from and remain in cloud settings. This helps onsite analysts identify vulnerabilities that put sensitive data at risk.
• In April 2022, CrowdStrike and Mandiant established a strategic alliance to help joint customers investigate, remediate, and defend against increasingly sophisticated cybersecurity events that impact enterprises worldwide. Mandiant will provide joint customers with proactive consulting engagements and incident response (IR) services using the CrowdStrike Falcon platform and subscription options as part of the deal.

Additional Benefits:

• The market estimate (ME) sheet in Excel format
• 3 months of analyst support

TABLE OF CONTENTS

1 INTRODUCTION

• 1.1 Study Assumptions
• 1.2 Scope of the Study

2 RESEARCH METHODOLOGY

3 EXECUTIVE SUMMARY

4 MARKET DYNAMICS

• 4.1 Market Overview
• 4.2 Market Drivers
  • 4.2.1 Increasing Level of Sophistication of Threats And Security Breaches
  • 4.2.2 Rise in IoT and BYOD Trend
• 4.3 Market Restraints
  • 4.3.1 Lack of Data Integration and Connectivity
• 4.4 Industry Value Chain Analysis
• 4.5 Industry Attractiveness Porters Five Forces Analysis
  • 4.5.1 Threat of New Entrants
  • 4.5.2 Bargaining Power of Buyers/Consumers
  • 4.5.3 Bargaining Power of Suppliers
  • 4.5.4 Threat of Substitute Products
  • 4.5.5 Intensity of Competitive Rivalry
• 4.6 Assessment of COVID-19 Impact on the market

5 MARKET SEGMENTATION

• 5.1 By Application
  • 5.1.1 Network Security Analytics
  • 5.1.2 Application Security Analytics
  • 5.1.3 Web Security Analytics
  • 5.1.4 Endpoint Security Analytics
• 5.2 By End-user Industry
  • 5.2.1 Healthcare
  • 5.2.2 Defense and Security
  • 5.2.3 Banking and Financial Services
  • 5.2.4 Telecom and IT
• 5.3 Geography
  • 5.3.1 North America
  • 5.3.2 Europe
  • 5.3.3 Asia-Pacific
  • 5.3.4 Latin America
  • 5.3.5 Middle East & Africa

6 COMPETITIVE LANDSCAPE

• 6.1 Company Profiles
  • 6.1.1 Alert Logic Inc.
  • 6.1.2 Arbor Networks Inc.
  • 6.1.3 Broadcom Inc. (Symantec Corporation)
  • 6.1.4 Cisco Systems Inc.
  • 6.1.5 RSA Security LLC
  • 6.1.6 Hewlett-Packard Enterprise Co.
  • 6.1.7 IBM Corporation
  • 6.1.8 Logrhythm Inc.
  • 6.1.9 Fireeye Inc.
  • 6.1.10 Splunk Inc.
  • 6.1.11 Fortinet Inc.
  • 6.1.12 McAfee LLC
  • 6.1.13 Micro Focus International PLC

7 INVESTMENT ANALYSIS

8 MARKET OPPORTUNITIES AND FUTURE TRENDS