TheInfoPro

Written by Daniel Kennedy, Research Director for Information Security

Originally published as a ThursdayTIP to the respondent network of TheInfoPro. Would you like to receive all of the ThursdayTIPs the minute they are released on a complimentary basis? Then join TheInfoPro’s respondent network.

Competing forces continue to complicate the information security budget conversation, as high profile breaches (Sony, RSA) continue to eat up newsprint while at the same time difficult economic operating conditions continue to drive all technology managers to try to do more with less. For example, one recent interview told us that he is just “trying to keep the ship afloat with big budget cuts.”

Assuming the preview data from the Security 14 wave holds up through the entirety of the sample, budget deltas between 2010 and 2011 are reflecting this dichotomy, as the percentage of enterprises expecting increased security budgets in 2011 rose from 34% (final data at the end of 2010) to 40% (partial data in July 2011). There is constriction on both ends of the spectrum, as the percentage of people expecting last year’s budget again this year dropped 11 percentage points. According to respondents, budget sizes appear at the highest frequency at the $1 million to $4 million range and the under $500,000 range, with only 14% reaching above $7 million.

Preview Data (1/2 sample) 2011 - Change in Information Security Budgets

Data loss prevention (DLP) is polling well and may benefit from the increased budgets. According the latest data, 40% of respondents have a network or endpoint DLP implementation in their plans.

Of course more budget dollars may still not be enough. In the race of responses to “what are your pain points in security,” budget never fares badly:

• “Since we are a not profit, our budgets have been frozen by the state.”
• “I think that many companies such as us have had constrained budgets.”
• “In ‘hold out’ mode. Nothing new or exciting on the horizon. Making due with what we have.”

Possibly Related Posts:

• Unified Communications Solutions
• Heat Index Reveals Hot Infosec Technologies
• The Ascent of 10GigE
• Storage Vendors See Mixed Q4
• High-risk Staff? Executives and IT Are Equally Risky

By: Angela Moscaritolo
23 February 2010 | SC Magazine | Original Article

Information security budgets will get a boost at many organizations in 2010, according to a study released Tuesday by IT research company TheInfoPro. The study, based on interviews of 259 security decision makers at Fortune 1000 and mid-size organizations, found that 40 percent of enterprises are planning to increase their 2010 security budgets. Data leakage prevention topped the list of projects planned for 2010, followed by identity management and compliance initiatives. — AM

Possibly Related Posts:

• They are the 11 percent (or less) who really get security
• Laggard to leader: What it takes to get there
• Experto internacional en TI instó a empresas chilenas a sumarse a la revolución del cloud computing
• CA ARCserve r16 Unifies Data Protection Across Virtual, Conventional and Cloud Resources to Ease Management of Diverse IT Infrastructures
• July #SecChat Recap – Security Conferences

• Larger vendors are leading in choice for infrastructure upgrades, points to potential M&A targets
• Forty percent (40%) of organizations are increasing security budgets in 2010
• Sixty percent (60%) of organizations already utilizing cloud-based infrastructure services or intending to do so in the next two years.

New York – February 23, 2010 – TheInfoPro, an independent research company for the IT industry, today released the results of its Information Security Study, which showed that 40 percent (40%) of enterprises are planning to increase their 2010 security budgets. …

Possibly Related Posts:

• Spending on Information Security Continues to Outpace the Rest of Corporate IT According to Latest Bi-Annual Study of the Global 2000 by TheInfoPro
• Enterprises Report that Internal Change & Learning are the Biggest Roadblocks in Moving to Cloud Based IT Infrastructures
• Latest IT Market Study From TheInfoPro: F1000 Enterprises 2011 Storage Spend Continues at a Strong Pace
• TheInfoPro Server Study: Operational Efficiencies, Not Compensation, Give Larger Organizations Cost Advantage Over Midsize Companies
• Fortune 1000 and MidSize Enterprise Organizations Say Immediate Spending Includes Telepresence and Unified Communications

11 January 2010 – Data loss prevention (DLP) solutions achieved a high Heat Index position (No. 4) in our last round of interviews as a result of planned implementations intended to address the number one pain point among security professionals (data loss) at that time. While it is difficult to provide an all-inclusive answer as to whether any one particular organization could benefit from DLP implementation, such an implementation recommendation should be driven by the nature of information created by or entrusted to the enterprise in question. With many enterprises citing optimistic budget expectations for 2010, it is possible that DLP will move forward and contribute in 2010 to both compliance and best practice initiatives for safeguarding critical data within the enterprise. As first noted in Q2 2009, DLP solutions continue to fail in advancing very far from being a strong solution in plan to in use. However, while prevailing economic conditions had prevented progress given the relatively high expense of implementation and the current state of security budgets overall, this impediment appears to be abating. Although final study results are still a few weeks away, we have noted the following from data gathered to date:

• DLP is by far the infrastructure security technology that is most often in large enterprises’ plans for implementation.
• Future spending intentions weakened slightly for DLP in 2010 as 18% of respondents now expect declines, as opposed to 7% reported earlier in 2009. However, 42% still expect their spending on DLP to increase in 2010.
• Although actual use of DLP dropped to 30% of F1000 enterprises (down from 39% in the previous study), 28% have it in plan for the next 12 months, is the same pent-up demand for DLP as TheInfoPro reported six months earlier.
• While Symantec remains the most frequently cited provider in plan and in use for DLP, the vendor competitive landscape has changed slightly as McAfee has moved up to be the second most frequently cited provider of DLP solutions.

Possibly Related Posts:

• Unified Communications Solutions
• Heat Index Reveals Hot Infosec Technologies
• The Ascent of 10GigE
• Storage Vendors See Mixed Q4
• High-risk Staff? Executives and IT Are Equally Risky

By Angela Moscaritolo
10 September 2009 | SearchStorage.com | Original Article

Data security vendor Trustwave on Wednesday announced the acquisition of data leakage prevention (DLP) vendor Vericept. …

Possibly Related Posts:

• They are the 11 percent (or less) who really get security
• Laggard to leader: What it takes to get there
• Experto internacional en TI instó a empresas chilenas a sumarse a la revolución del cloud computing
• CA ARCserve r16 Unifies Data Protection Across Virtual, Conventional and Cloud Resources to Ease Management of Diverse IT Infrastructures
• July #SecChat Recap – Security Conferences