安全分析市场 - 增长、趋势、COVID-19 影响和预测（2022-2027）

在预测期内，安全分析市场预计将以 10.7% 的复合年增长率增长。

互联网的迅速传播极大地增加了网络攻击的类型和频率。许多着名的网络安全解决方案都被用来对抗这些攻击，但计算机网络上大数据的生成正在迅速使这些传统解决方案过时。

主要亮点

• 安全分析必须利用自动化的安全情报与 IT 资产进行互操作并响应不断变化的环境。它还应该与用于战术协调和自动化的安全策略控制紧密集成。
• 随着物联网的出现以及数字化转型的速度和范围不断扩大，当今的网络基础设施越来越容易受到网络攻击。大数据分析需要快速处理各种来源的高速、海量数据，快速识别异常和攻击模式，减少系统漏洞，提高容错能力，很有可能成为高效网络安全解决方案的必要组成部分。
• 安全分析解决方案从基于规则的检测扩展到机器学习 (ML) 和人工智能 (AI) 等数据科学技术。这是为了解决外部问题，例如增加数据量、增加基础设施复杂性以及缺乏知识渊博的安全专业人员。安全团队必须在大多数组织环境中集成大量机器生成的数据和安全分析，以有效处理威胁。
• 随着数据洩露变得更加普遍并且受影响的记录量变得越来越高，各种规模的组织都将承担更高的成本。由世界领先组织组成的独立非营利组织 ISF 表示，2021 年数据洩露的数量、规模和成本将继续上升。根据 IBM 和 Ponemon Institute 的统计，美国一次数据洩露的损失估计为 735 万美元，几乎是全球 362 万美元的两倍。因此，公司越来越多地将威胁搜寻作为一种预防措施。
• COVID-19 疫情对全球经济产生了重大影响，改变了人们交流和工作的方式。这些巨大的变化正在帮助垃圾邮件发送者和黑客在网络世界中茁壮成长。出于这个原因，预计安全分析市场将很快从大流行导致的网络攻击增加中受益匪浅。

主要市场趋势

网络安全分析占据很大份额

• 网络安全应用程序占全球安全分析解决方案需求的最大份额。下一代防火墙 (NGFW)、入侵防御系统 (IPS) 和安全 Web 网关 (SWG) 等安全解决方案部署在企业网络和公共互联网之间的连接点。大多数企业应用程序、用户和现场设备都可以查看和控制进出企业网络的所有流量。
• 与其他问题域不同，安全分析不适用于统计分析。在大多数情况下，攻击者倾向于跟上变化，这使得创建网络安全分析解决方案对程序员来说几乎是不可能完成的任务。因此，有必要进行持续的网络监控，寻找有害威胁或入侵者的迹象。网络监控通常与防火墙、防病毒软件和 IDP 等其他安全工具结合使用。网络安全监控可以手动完成，也可以使用软件自动完成。
• 此外，基于贝叶斯概率论的传统网络安全分析解决方案，通过掌握问题的所有要素并以数学方式计算可能的结果，可以高精度地预测某事发生的可能性，它们正在被学习算法所取代，这使得网络安全分析解决方案更可靠。
• 鑑于现有攻击的频率和多样性，以及未来更具破坏性的新攻击的威胁，网络安全已成为网络安全的中心话题。网络安全措施使计算机、用户和程序能够在安全的环境中执行关键功能。

北美占主要份额

• 凭藉鼓励创新的政府政策、庞大的工业基础和高购买力，北美、美国和加拿大是新技术引进和推广的最重要地区之一。美国已成为多个行业安全分析的重要市场。大多数安全分析平台开发人员都位于该国。
• 北美的数据洩露、恶意软件攻击和高级持续威胁的发生率很高，这有助于安全分析市场的区域增长。影响北美安全分析采用的其他因素包括对安全合规管理系统的需求以及对网络安全解决方案的投资增加。
• 该地区的最终用户行业一直是分析解决方案的先驱和早期采用者，以便在其他地区的竞争对手中获得优势。出于这个原因，企业和小型企业正在构建大型数据库和基础设施，以支持使用主动安全分析。这些解决方案在该地区的采用还受到对高级针对性攻击造成的损害的认识的提高以及安全分析解决方案识别和响应实时 APT 和 ATA 的能力的推动。
• Cylance Inc.（人工智能驱动、预防优先的安全解决方案的领先供应商）和 Securonix（一家在北美开展安全分析和用户和实体行为分析业务的 SIEM）等公司已将 CylancePROTECT 和 Securonix Security Analytics 结合在一起。宣布建立合作伙伴关係以支持平台新版本的互操作性，可以看出安全分析中的云解决方案趋势已经开始。

竞争格局

网络安全市场是 IBM 和 McAfee 等技术和网络巨头的所在地，并由多家全球和地区参与者组成。此外，该市场的特点是产品渗透率不断提高，产品差异化适度，竞争力强。市场上的主要参与者包括 Arbor Networks Inc、RSA Security LLC (RSA) 和 Cisco。

• 2022 年 7 月，CloudStrike 的新云威胁追踪服务 Falcon OverWatch Cloud Threat Hunting 将推出，使安全团队能够持续识别源自和驻留在云环境中的复杂和隐蔽威胁。这使现场分析师能够识别危及敏感数据的漏洞。
• 2022 年 4 月，CrowdStrike 和 Mandiant 结成战略联盟，帮助联合客户调查、补救和防御影响全球企业的不断演变的网络安全事件。作为交易的一部分，Mandiant 将使用 CrowdStrike Falcon 平台和订阅选项为联合客户提供主动咨询服务和事件响应 (IR) 服务。

其他福利

• Excel 格式的市场预测 (ME) 表
• 3 个月的分析师支持

目录

第 1 章 简介

• 调查先决条件
• 调查范围

第二章研究方法论

第三章执行摘要

第四章市场动态

• 市场概况
• 市场驱动力
  • 日益复杂的威胁和安全妥协
  • 不断增长的物联网和 BYOD 趋势
• 市场限制
  • 缺乏数据集成和连接性
• 行业价值链分析
• 行业吸引力搬运工五力分析
  • 新进入者的威胁
  • 买方/消费者议价能力
  • 供应商的议价能力
  • 替代品的威胁
  • 竞争对手之间的竞争
• COVID-19 的市场影响评估

第五章市场细分

• 按申请
  • 网络安全分析
  • 应用安全分析
  • 网络安全分析
  • 端点安全
• 按终端用户行业
  • 卫生保健
  • 国防/安全
  • 银行和金融服务
  • 通信/IT
• 按地区
  • 北美
  • 欧洲
  • 亚太地区
  • 拉丁美洲
  • 中东/非洲

第 6 章 竞争格局

• 公司简介
  • Alert Logic Inc.
  • Arbor Networks Inc.
  • Broadcom Inc.（Symantec Corporation）
  • Cisco Systems Inc.
  • RSA Security LLC
  • Hewlett-Packard Enterprise Co.
  • IBM Corporation
  • Logrhythm Inc.
  • Fireeye Inc.
  • Splunk Inc.
  • Fortinet Inc.
  • McAfee LLC
  • Micro Focus International PLC

第七章投资分析

第八章市场机会与未来趋势

The Security Analytics market is expected to grow with a CAGR of 10.7% during the forecast period. The rapid growth of the internet has resulted in an exponential increase in the type and frequency of cyber attacks. Although many well-known cybersecurity solutions are utilized to counteract these attacks, the generation of Big Data over computer networks rapidly renders these traditional solutions obsolete.

Key Highlights

• Security analytics interoperate with IT assets and leverage automated security intelligence to keep up with the constantly changing landscape. It should also be tightly integrated with security policy controls for tactical adjustments and automation.
• The current network infrastructure is becoming more vulnerable to cyberattacks due to the emergence of IoT and the expanding speed and scope of digital transformation. Due to the requirement for quick processing of the high-velocity, high-volume data from various sources to identify anomalies and attack patterns as soon as possible to reduce the vulnerability of the systems and increase their resilience, big data analytics will be a necessary component of any efficient cyber security solution.
• Security analytics solutions have expanded from rules-based detection to data science methods, such as Machine Learning (ML) and Artificial Intelligence (AI). This is in response to external issues such as increasing data volumes, sophisticated infrastructure, and a lack of knowledgeable security specialists. Security teams must integrate security analytics with the vast amounts of machine-generated data in most organizational contexts to handle threats effectively.
• The increased pervasiveness of data breaches and the higher volume of impacted records result in far higher costs for organizations of all sizes. According to ISF, an independent and not-for-profit association of leading organizations worldwide, the number, magnitude, and costs of data breaches will continue on their upward trajectories in 2021. According to statistics from IBM and Ponemon Institute, the price of a breach in the United States is estimated at USD 7.35 million, or nearly double the USD 3.62 million it costs globally. As a result, organizations are increasingly concentrating on threat hunting as a preventive measure.
• The COVID-19 epidemic significantly impacts the world economy and changes people's communication and work. These drastic changes are helping spammers and hackers thrive in the cyber world. Because of this, it is predicted that the security analytics market will soon benefit significantly from the rise in cyberattacks caused by the pandemic.

Key Market Trends

Network Security Analytics to Account for Significant Share

• Network security applications are the most significant global demand for security analytics solutions. Security solutions such as a next-generation firewall (NGFW), intrusion prevention system (IPS), and secure web gateway (SWG) were deployed at the point of connection between the corporate network and the public Internet. Most corporate applications, users, and devices located on-site provided visibility and control over all traffic entering and leaving the corporate network.
• Unlike other more well-behaved problem domains, security analysis does not naturally lend itself to statistical analysis. In most cases, attackers tend to constantly adapt to changes, making the fabrication of network security analytics solutions an almost impossible task for programmers. Hence continuous network monitoring is required, looking for indications of harmful or intrusive threats. It is often used with other security tools like firewalls, antivirus software, and IDPs. Monitoring for network security may be done manually or automatically using the software.
• Further, as the traditional network security analytics solutions based on the Bayesian probability theory, which states it's possible to predict with high accuracy the likelihood of something happening by capturing every element of a problem and calculating possible outcomes mathematically, are being replaced with machine learning algorithms, due to this network security analytics solutions are getting more reliable.
• Given the frequency and variety of existing attacks and the threat of new and more destructive future attacks, network security has become a central topic in cybersecurity. Network security measures allow computers, users, and programs to perform critical functions in a secure environment.

North America to Account for Major Share

• North America, in the US and Canada, with their supportive government policies to encourage innovation, huge industrial base, and high purchasing power, is one of the most critical regions for adopting and expanding new technology. In several industries, the US is a significant market for security analytics. The majority of security analytics platform developers are found in this country.
• North America has a higher incidence of data breaches, malware attacks, and advanced persistent threats, contributing to the regional growth of the security analytics market. Other factors influencing the adoption of security analytics in North America include the demand for security compliance management systems and rising investment in cybersecurity solutions.
• End-user industries in the region have been pioneers and early adopters of analytics solutions to remain ahead of the competition in other regions. This has helped enterprises and SMBs create massive databases and infrastructure to support the use of security analytics in a proactive measure. The adoption of these solutions in the region is also fueled by rising awareness of the damage caused by advanced targeted threats and the capacity of security analytics solutions to identify and address real-time APT or ATA.
• Companies such as Cylance Inc., the leading provider of AI-driven, prevention-first security solutions, and Securonix, a provider of SIEM and user and entity behavioral analytics operating in North America in security analytics, announced a partnership to support the interoperability of CylancePROTECT with the new release of the Securonix Security Analytics Platform indicating the emerging trend towards cloud solution in security analytics.

Competitive Landscape

The network security market comprises several global and regional players, with the presence of technology and networking giants such as IBM and McAfee. Further, this market is characterized by growing levels of product penetration, moderate product differentiation, and high levels of competition. Some key players in the market are Arbor Networks Inc, RSA Security LLC (RSA), and Cisco.

• In July 2022, Falcon OverWatch Cloud Threat Hunting, a new cloud threat hunting service from Crowdstrike, was launched, giving security teams the capability to continuously identify sophisticated and covert threats that originate from and remain in cloud settings. This helps onsite analysts identify vulnerabilities that put sensitive data at risk.
• In April 2022, CrowdStrike and Mandiant established a strategic alliance to help joint customers investigate, remediate, and defend against increasingly sophisticated cybersecurity events that impact enterprises worldwide. Mandiant will provide joint customers with proactive consulting engagements and incident response (IR) services using the CrowdStrike Falcon platform and subscription options as part of the deal.

Additional Benefits:

• The market estimate (ME) sheet in Excel format
• 3 months of analyst support

TABLE OF CONTENTS

1 INTRODUCTION

• 1.1 Study Assumptions
• 1.2 Scope of the Study

2 RESEARCH METHODOLOGY

3 EXECUTIVE SUMMARY

4 MARKET DYNAMICS

• 4.1 Market Overview
• 4.2 Market Drivers
  • 4.2.1 Increasing Level of Sophistication of Threats And Security Breaches
  • 4.2.2 Rise in IoT and BYOD Trend
• 4.3 Market Restraints
  • 4.3.1 Lack of Data Integration and Connectivity
• 4.4 Industry Value Chain Analysis
• 4.5 Industry Attractiveness Porters Five Forces Analysis
  • 4.5.1 Threat of New Entrants
  • 4.5.2 Bargaining Power of Buyers/Consumers
  • 4.5.3 Bargaining Power of Suppliers
  • 4.5.4 Threat of Substitute Products
  • 4.5.5 Intensity of Competitive Rivalry
• 4.6 Assessment of COVID-19 Impact on the market

5 MARKET SEGMENTATION

• 5.1 By Application
  • 5.1.1 Network Security Analytics
  • 5.1.2 Application Security Analytics
  • 5.1.3 Web Security Analytics
  • 5.1.4 Endpoint Security Analytics
• 5.2 By End-user Industry
  • 5.2.1 Healthcare
  • 5.2.2 Defense and Security
  • 5.2.3 Banking and Financial Services
  • 5.2.4 Telecom and IT
• 5.3 Geography
  • 5.3.1 North America
  • 5.3.2 Europe
  • 5.3.3 Asia-Pacific
  • 5.3.4 Latin America
  • 5.3.5 Middle East & Africa

6 COMPETITIVE LANDSCAPE

• 6.1 Company Profiles
  • 6.1.1 Alert Logic Inc.
  • 6.1.2 Arbor Networks Inc.
  • 6.1.3 Broadcom Inc. (Symantec Corporation)
  • 6.1.4 Cisco Systems Inc.
  • 6.1.5 RSA Security LLC
  • 6.1.6 Hewlett-Packard Enterprise Co.
  • 6.1.7 IBM Corporation
  • 6.1.8 Logrhythm Inc.
  • 6.1.9 Fireeye Inc.
  • 6.1.10 Splunk Inc.
  • 6.1.11 Fortinet Inc.
  • 6.1.12 McAfee LLC
  • 6.1.13 Micro Focus International PLC

7 INVESTMENT ANALYSIS

8 MARKET OPPORTUNITIES AND FUTURE TRENDS