Story image

IDC - APAC’s security services vendor Leaders and Players

04 Jul 18

The reports are Asia/Pacific Managed Security Services (MSS) 2018 Vendor Assessment and Asia/Pacific Threat Lifecycle Services 2018 Vendor Assessment.

The MSS report provides a detailed evaluation of 19 managed security services providers that address the evolving regulatory environment, and the complex security challenges brought by digital/business transformation and rapidly broadening threat landscape.

It focuses on the evaluation of managed security services providers' security offerings, including compliance management, security infrastructure management in hybrid environments, portfolio benefits, core platform's automation and orchestration capabilities, market execution, customer services.

Altogether vendor responses to 29 separate evaluation criteria are evaluated - 15 criteria for capabilities and 14 criteria for strategy.

The MSS assessment named (in alphabetical order) Accenture, BT, Deloitte, EY, IBM, NTT, Symantec, and Trustwave in the ‘Leaders’ category of the managed security services market.

While other vendors profiled in this analysis such as DXC, Fujitsu, HCL, Orange Business Services, Quann, Secureworks, Verizon, Tata Communications, TCS, Telstra, and Wipro were named in the ‘Major Players’ category.

The emergence of the threat lifecycle services market is reflective of a major market shift in the overall security services market - from the traditional solution-focused, compliance-driven managed security services to threat-focused and intelligence-driven lifecycle security services.

This year, the Threat Lifecycle Services report provides a detailed analysis of the capabilities of 17 providers which offer a range of threat lifecycle services that help organisations be more proactive in the preparation, detection and response to any incidents or threats and significantly enhance their cyber-resilience level.

The report focuses on a set of professional security services, (including advisory, consulting and training services) such as security assessment, cyber range, incident response, threat intelligence services, and forensic services.

The assessment (in alphabetical order) named Deloitte, EY, Fireye, Symantec, Verizon, and Secureworks in the ‘Leaders’ category, differentiating themselves with various expertise throughout the threat lifecycle.

Meanwhile, DXC, Fujitsu, HCL, Kaspersky, IBM, NTT, Quann, TCS, Trustwave, RSA, and Wipro were named in the ‘Major Players’ category in this assessment.

"Tech buyers should select providers that have the best characteristics to augment and optimise their security operations, and more importantly, transform their security programs to be more aligned with their business strategies,” says IDC Asia/Pacific Security Services  Senior Research Manager Cathy Huang,

“Breaches have become a daily occurrence and it is critical for security service providers to offer a lifecycle approach that includes services to help organisations prepare, respond, remediate, and recover to a healthy state, and to minimise the negative impact of a breach."

Both reports provide pertinent guidance for technology buyers and highlight how each vendor is uniquely differentiated.

Both studies leverage a comprehensive list of capabilities and strategy criteria that explain a vendor's success in each market.

The evaluation is based on a multidimensional and rigorous framework that assesses vendors relative to the criteria and one another and highlights the factors expected to be the most influential for success in the market in both the short term and the long term.

How to stay safe when shopping online
Online shopping is a great way to avoid the crowds – but there are risks.
Dell EMC embeds security in latest servers
Dell EMC's 14th generation of PowerEdge servers has comprehensive management tools to provide security across hardware and firmware.
Why data backups should be a part of daily operations
"Disaster recovery needs to address complete system failure and provide a set of security policies to govern disaster incidents."
Businesses focusing on threats from within - survey
Over 50% of respondents reported that 100 days of dwell time or more was representative of their organisation.
Corelight and Exabeam partner to improve network monitoring
The combination of lateral movement and siloed usage of point security products leaves many security teams vulnerable to compromise.
SailPoint releases first identity annual report
SailPoint’s research found that many organisations are lacking maturity in their governance processes over identities.
Disruption in the supply chain: Why IT resilience is a collective responsibility
"A truly resilient organisation will invest in building strong relationships while the sun shines so they can draw on goodwill when it rains."
Businesses too slow on attack detection – CrowdStrike
The 2018 CrowdStrike Services Cyber Intrusion Casebook reveals IR strategies, lessons learned, and trends derived from more than 200 cases.