Abstract
Report Focus
This report is focused on the demand drivers for solutions that are designed
to address email, instant messaging and Web-related security threats. The
research conducted for this report, and the report itself, are focused on the
needs of vendors, investors and others who are interested in participating in
the email, instant messaging and Web security markets in some fashion. The
information included in this report is designed to help these vendors and
interested parties make informed decisions about the future opportunities
available in this market.
Key Findings and Trends Discussed in this Report
Web 2.0 Security Threats
The number of respondents interested in investing in Web 2.0 gateway security
grew reasonably compared to last year' s survey, a testament to the growing
variety and number of Web-based threats.
Linkedin Is In, Facebook Is Suspect And MySpace Is Really Suspect
While half of organizations allow Facebook use by their employees, only 28% of
respondents (IT decision makers in mid-sized and large organizations) consider
the application to be “legitimate” for business use. The same goes
for Twitter, which was allowed by 49% of the organizations and yet viewed as
not legitimate by 28% of respondents.
Satisfaction With Spam Capabilities is Increasing
Since last year, nearly a third (31%) more respondents indicated that spam has
gotten better for their organizations and 14% fewer respondents indicated that
spam levels have gotten worse.
Cloud-Based Services Continue to Grow in Popularity
Overall, the number of respondents who were neutral, very, extremely likely or
had already deployed hosted security services grew by nine points more than
last year to 63%. Over the next 12 months, hosted anti-spam services will show
the greatest growth, climbing six percentage points. More so than last year,
organizations are bullish about hosted security services, such as those
offered by Kaspersky, Trend Micro and, more recently, Microsoft. Over the next
24 months, that number should grow to two-thirds of respondent organizations.
Web security services are also an area of strong interest, as well. The number
of respondents who are “very” interested or
“extremely” interested will grow by six percentage points over the
next 24 months.
DLP Is Still Hot
Organizations continue to place a premium on conventional security mechanisms,
namely anti-virus and anti-spam software. With that said, there is markedly
stronger interest in data leakage prevention (DLP) since last year, with
nearly 40% of organizations considering the technology.
Comprehensive Security Solutions Are In
Only a fifth of the respondents indicated that they use a consolidated,
comprehensive, centrally managed messaging security solution. The vast
majority are dealing with separate vendors for their various best-of-breed
solutions. Yet, when we examine what organizational decision makers want, the
number of respondents who prefer a consolidated, comprehensive, centrally
managed messaging security solution doubled, while individual, best-of-breed
solutions dropped.
IT Spending Expected To Drop
Not surprisingly, IT expects to spend significantly less in 2009 than in 2008.
This year 47% of respondents expected IT spending to be lower in 2009 versus
18% from last year. Similarly, while 48% of respondents last year expected
spending to be higher in 2008, this year that number was down to 23% of
organizations.
Table of Contents
Chapter 1: Executive Summary
Chapter 2: Background and Methodology
Chapter 3: Problems in Managing the Security Infrastructure
Chapter 4: Key Feature and Function Requirements
Chapter 5: Security Delivery Models
Chapter 6: Planned Security Expenditures
Chapter 7: IT 2009 Spending Plans and Security Market Forecast
Chapter 8: Security Vendors
List of Figures
- North American Messaging and Web Security Market Forecast, 2009-2012
- “Is the percentage of spam blocked by your anti-spam system(s)
getting better, worse or staying the same over time?”
- “Is the false positive ratio generated by your anti-spam system(s)
getting better, worse or staying the same over time?”
- Infiltrations and Problems That Have Occurred Between 2008 and 2009
- Organizations That Have Switched Security Vendors Between 2008 and 2009
- Legitimate vs. Non-Legitimate Applications
- Applications Allowed and Not Allowed
- Percentage of Organizations That Use Social Networking Tools for Marketing
Purposes
- Importance of Various Features in Terms of Their Importance in Switching
or Replacing Existing Anti-Spam Solution(s)
- Importance of Various Features in Terms of Their Importance in Switching
or Replacing Existing Anti-Malware Solution(s)
- Importance of Various Reasons for Deploying an Intrusion Protection (IPS)
Solution
- “Should reputation-based email security services be integrated with
your other perimeter systems?”
- “Does your organization require email messages to be reviewed and
approved by others before being sent outside the organization?”
- Current and Expected Breakdown of Anti-Virus Capabilities by Delivery Model
- Current and Expected Breakdown of Anti-Spam Capabilities by Delivery Model
- Desirability of Various Delivery Models for Basic (Anti-Virus, Anti-Spam,
Basic Compliance)
- Email Security Capabilities
- Desirability of Various Delivery Models for More Sophisticated Email
Security Capabilities
- Desirability of Various Models for More Sophisticated Email Security
Capabilities
- IT Person-Hours Per Week Per 1,000 Users Spent on Managing Messaging
Security, Web Security and Backup/Archival Capabilities
- Proportion of Users that Will Employ Wireless Handhelds to Access Email
- “Have you considered implementing a reputation-based perimeter
solution for filtering/blocking email?”
- Likelihood of Definitely Using a Managed or Hosted Service Provider for
Email Security Services During the Next 12 Months
- Likelihood of Definitely Using a Managed or Hosted Service Provider for
Email Security Services During the Next 24 Months
- Likelihood of Definitely Using a Managed or Hosted Service Provider for
Web Security Services During the Next 12 Months
- Likelihood of Definitely Using a Managed or Hosted Service Provider for
Web Security Services During the Next 24 Months
- Plans for Overall IT Spending in 2009 Compared to 2008
- Plans for Email Security Spending in 2009 Compared to 2008
- Plans for Web Security Spending in 2009 Compared to 2008
- Plans for Instant Messaging Security Spending in 2009 Compared to 2008
- North American Messaging and Web Security Market Forecast, 2009-2012
List of Tables
- Breakdown of Users by Messaging Platform, 2009 and 2011
- Seriousness of Various Management Problems
- IT Views on Importance of Non-IT Management and Staff Participating in the
Policy Management Function
- Importance of Various Reasons for Deploying a Web Management Solution
- Views on the Use of a Hosted/Cloud/SaaS Provider for Email Security
- Areas in Which Organizations Will Increase Security Budgets in 2009
Compared to 2008
- Likelihood of Investing in New Technologies Between April 2009 and April
2010
- Likelihood of Purchasing New Products Over the Next 18 Months, Either to
Replace
- Existing Capabilities or for New Functionality
- Messaging and Related Capabilities Deployed, Early 2009 and Late 2010
- Current Practices and Preferences for Managing Email Security Capabilities
- Perception of the Value of Various Security Capabilities
- Current Practice and Preference for Centralized Management of Security
Capabilities
- Likelihood of Considering Various Email Security Vendors
- Publicly Available Financial Information for Leading Security Vendors
